On Mon, Dec 12, 2005 at 06:37:03PM -0500, Tom Lane wrote:
> "Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> > On Mon, Dec 12, 2005 at 05:43:47PM -0500, Rod Taylor wrote:
> >> A sudo equivalent would be a version of psql that always connected to
> >> the database using super-user and allowed command ex
Le Mardi 13 Décembre 2005 00:13, Tom Lane a écrit :
> Guillaume LELARGE <[EMAIL PROTECTED]> writes:
> > I've made more tests on schemas. I'm able to drop information_schema and
> > public schemas but I can't drop pg_catalog and pg_toast. It makes me
> > think that only pg_* are system schemas and t
"Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> On Mon, Dec 12, 2005 at 05:43:47PM -0500, Rod Taylor wrote:
>> A sudo equivalent would be a version of psql that always connected to
>> the database using super-user and allowed command execution based on a
>> regular expression. Bit of a hack to say the
Guillaume LELARGE <[EMAIL PROTECTED]> writes:
> I've made more tests on schemas. I'm able to drop information_schema and
> public schemas but I can't drop pg_catalog and pg_toast. It makes me think
> that only pg_* are system schemas and that public and information_schema are
> public schemas. A
On Mon, Dec 12, 2005 at 05:43:47PM -0500, Rod Taylor wrote:
> > > >>>I'd love to see something like SUDO ALTER USER ... SUDO REINDEX ...
> > > >>>etc.
> > > >>>That would make it easy to do 'normal' work with a non-superuser
> > > >>>account.
>
> A sudo equivalent would be a version of psql that
On Mon, 2005-12-12 at 16:35 -0600, Jim C. Nasby wrote:
> On Mon, Dec 12, 2005 at 05:27:33PM -0500, Andrew Dunstan wrote:
> > >On Mon, Dec 12, 2005 at 05:00:45PM -0500, Tom Lane wrote:
> > >
> > >
> > >>"Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> > >>
> > >>
> > >>>I'd love to see something lik
On Mon, Dec 12, 2005 at 05:27:33PM -0500, Andrew Dunstan wrote:
> >On Mon, Dec 12, 2005 at 05:00:45PM -0500, Tom Lane wrote:
> >
> >
> >>"Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> >>
> >>
> >>>I'd love to see something like SUDO ALTER USER ... SUDO REINDEX ... etc.
> >>>That would make it eas
Jim C. Nasby wrote:
On Mon, Dec 12, 2005 at 05:00:45PM -0500, Tom Lane wrote:
"Jim C. Nasby" <[EMAIL PROTECTED]> writes:
I'd love to see something like SUDO ALTER USER ... SUDO REINDEX ... etc.
That would make it easy to do 'normal' work with a non-superuser
account.
You can
On Mon, Dec 12, 2005 at 05:00:45PM -0500, Tom Lane wrote:
> "Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> > I'd love to see something like SUDO ALTER USER ... SUDO REINDEX ... etc.
> > That would make it easy to do 'normal' work with a non-superuser
> > account.
>
> You can already do most of this
"Jim C. Nasby" <[EMAIL PROTECTED]> writes:
> I'd love to see something like SUDO ALTER USER ... SUDO REINDEX ... etc.
> That would make it easy to do 'normal' work with a non-superuser
> account.
You can already do most of this with SET/RESET ROLE:
regression=# create user tgl;
CREATE ROLE
regres
On Mon, 12 Dec 2005 14:05:03 -0600
"Jim C. Nasby" <[EMAIL PROTECTED]> wrote:
> I think it would be a huge benefit to have something equivalent to
> sudo for psql (though maybe it could be generalized more). Having to
> change to a different connection/authorization anytime you need to do
> somethi
On Sat, Dec 10, 2005 at 09:18:32AM -0800, Joshua D. Drake wrote:
> >
> >However there is an effort to get rid of root in some Unix lands,
> >separating its responsabilities with more granularity. Maybe there
> >could be an effort, not to hand-hold the true superusers, but to
> >delegate some of it
Le Samedi 10 Décembre 2005 17:43, vous avez écrit :
> Guillaume LELARGE <[EMAIL PROTECTED]> writes:
> > Apparently, I can rename all schemas, even system schemas !
> > metier=# alter schema pg_catalog rename to foobar;
> > ALTER SCHEMA
>
> If you are superuser, you can do anything you want, up to a
Alvaro Herrera <[EMAIL PROTECTED]> writes:
> Regarding CREATEROLE, I wonder why is that a role with that privilege is
> able to create other roles containing any privileges (except
> superuserness), and not just the privileges the creating role has.
The point of CREATEROLE was to allow a role to d
On Sat, Dec 10, 2005 at 14:25:46 -0300,
Alvaro Herrera <[EMAIL PROTECTED]> wrote:
> Joshua D. Drake wrote:
> >
> > >However there is an effort to get rid of root in some Unix lands,
> > >separating its responsabilities with more granularity. Maybe there
> > >could be an effort, not to hand-hold
Like sudo?
I was thinking in the thing called "capabilities".
I just meant as a metaphor ;)
--
Command Prompt, Inc., Your PostgreSQL solutions company. 503-667-4564
Custom programming, 24x7 support, managed services, and hosting
Open Source Authors: plPHP, pgManage, Co-Authors: plPerlNG
Joshua D. Drake wrote:
>
> >However there is an effort to get rid of root in some Unix lands,
> >separating its responsabilities with more granularity. Maybe there
> >could be an effort, not to hand-hold the true superusers, but to
> >delegate some of its responsabilities to other users.
>
> Like
Tom Lane wrote:
> Alvaro Herrera <[EMAIL PROTECTED]> writes:
> > However there is an effort to get rid of root in some Unix lands,
> > separating its responsabilities with more granularity. Maybe there
> > could be an effort, not to hand-hold the true superusers, but to
> > delegate some of its re
However there is an effort to get rid of root in some Unix lands,
separating its responsabilities with more granularity. Maybe there
could be an effort, not to hand-hold the true superusers, but to
delegate some of its responsabilities to other users.
Like sudo?
Joshua D. Drake
Alvaro Herrera <[EMAIL PROTECTED]> writes:
> However there is an effort to get rid of root in some Unix lands,
> separating its responsabilities with more granularity. Maybe there
> could be an effort, not to hand-hold the true superusers, but to
> delegate some of its responsabilities to other us
Tom Lane wrote:
> If you are superuser, you can do anything you want, up to and including
> breaking the system irretrievably. Compare "rm -rf /" on Unix. We
> won't be putting training wheels on superuser status for the same
> reasons that no one finds it a good idea to restrict root's abilities
Guillaume LELARGE <[EMAIL PROTECTED]> writes:
> Apparently, I can rename all schemas, even system schemas !
> metier=# alter schema pg_catalog rename to foobar;
> ALTER SCHEMA
If you are superuser, you can do anything you want, up to and including
breaking the system irretrievably. Compare "rm -r
Hi,
At my work, I have to dump a database and restore it on another database under
a specific schema. My first idea was to create the new schema on the old
database, move all the database objects on this new schema, dump the old db
and restore on the new one. But I have to move quite a lot of o
23 matches
Mail list logo
