On 08/13/2013 01:33 PM, Hannu Krosing wrote:
In any case, using permissions is a somewhat leaky bandaid, since
superusers have overriding access privileges anyway. A better way
to do what the OP wants might be to have a view trigger that raises an
exception.
Superuser can easily disable or drop the trigger as well.
That's true, but it requires positive action to do so. Thus the trigger
can give you some protection in cases of stupidity, if not cases of malice.
cheers
andrew
--
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers
