> > Difficult to do, when those privileges might be recorded in
> > databases you're not even connected to at the time of the drop.
>
> I belive it would be pretty difficult, but leaving it "just like
> that" creates ssecurity breach (imagine someone droping user,
> beliving that everytinh is o.k.
On Thu, Jan 09, 2003 at 11:21:56AM -0500, Tom Lane wrote:
> Difficult to do, when those privileges might be recorded in databases
> you're not even connected to at the time of the drop.
I belive it would be pretty difficult, but leaving it "just like that"
creates ssecurity breach (imagine someone
Hubert depesz Lubaczewski <[EMAIL PROTECTED]> writes:
> I belive drop user should automatically drop all user privileges
Difficult to do, when those privileges might be recorded in databases
you're not even connected to at the time of the drop.
regards, tom lane
-
Versions tested:
7.4devel from cvs and 7.2.x (i'm not sure about x since the test was
done by somebody else).
Description:
When dropping user his rights stay in database creating possible
security breach.
Sample Code:
create table xxx (...);
create user test;
grant select on xxx to te
