On 19 July 2018 at 08:23, Stephen Frost wrote:
> Greetings,
>
> * Craig Ringer (cr...@2ndquadrant.com) wrote:
> > Untrusted PLs should be GRANTable with a NOTICE or WARNING telling the
> > admin that GRANTing an untrusted PL effectively gives the user the
> ability
> > to escape to superuser.
>
>
Greetings,
* Craig Ringer (cr...@2ndquadrant.com) wrote:
> Untrusted PLs should be GRANTable with a NOTICE or WARNING telling the
> admin that GRANTing an untrusted PL effectively gives the user the ability
> to escape to superuser.
I don't know that we really want to get into the business of iss
Greetings,
* Peter Eisentraut (peter.eisentr...@2ndquadrant.com) wrote:
> On 17.07.18 07:20, Craig Ringer wrote:
> > A user has raised the point that our refusal to GRANT rights to
> > untrusted PLs is counterproductive and inconsistent with how we behave
> > elsewhere.
>
> Previous discussion:
>
On Tue, Jul 17, 2018 at 1:20 AM, Craig Ringer wrote:
> Forcing users to create their PLs as a superuser increases the routine use
> of superuser accounts. Most users' DDL deploy scripts will get be run as a
> superuser if they have to use a superuser for PL changes; they're not going
> to SET ROLE
On 17.07.18 07:20, Craig Ringer wrote:
> A user has raised the point that our refusal to GRANT rights to
> untrusted PLs is counterproductive and inconsistent with how we behave
> elsewhere.
Previous discussion:
https://www.postgresql.org/message-id/flat/1357905627.24219.6.camel%40vanquo.pezone.ne
