subject:"Re\: \[HACKERS\] Re\: \[BUGS\] BUG #13694\: Row Level Security by\-passed with CREATEUSER permission"

Re: [HACKERS] Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission

2015-10-22 Thread Tom Lane

Stephen Frost  writes:
> * Joe Conway (m...@joeconway.com) wrote:
>> On 10/21/2015 12:46 PM, Tom Lane wrote:
>>> Attached patch rips out CREATEUSER and NOCREATEUSER options lock, stock,
>>> and barrel.

>> Looks good to me.

>>> Another possibility is to change them to actually mean CREATEROLE and
>>> NOCREATEROLE.  I think probably a clean break is better though.

>> I think that would be too confusing. I'd rather see them go away ala
>> your patch.

> Agreed.

Hearing no objections, done that way.

regards, tom lane


-- 
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers

Re: [HACKERS] Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission

2015-10-22 Thread Stephen Frost

* Joe Conway (m...@joeconway.com) wrote:
> On 10/21/2015 12:46 PM, Tom Lane wrote:
> > Attached patch rips out CREATEUSER and NOCREATEUSER options lock, stock,
> > and barrel.
> 
> Looks good to me.
> 
> > Another possibility is to change them to actually mean CREATEROLE and
> > NOCREATEROLE.  I think probably a clean break is better though.
> 
> 
> I think that would be too confusing. I'd rather see them go away ala
> your patch.

Agreed.

Thanks!

Stephen


signature.asc
Description: Digital signature

Re: [HACKERS] Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission

Re: [HACKERS] Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission

2 matches

Site Navigation

Mail list logo

Footer information