| Lists: | pgsql-hackers |
|---|
| From: | "Mark Hollomon" <mhh(at)nortelnetworks(dot)com> |
|---|---|
| To: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Proposal : changing table ownership |
| Date: | 2000-09-08 13:26:12 |
| Message-ID: | 39B8E8F3.EAC7D442@americasm01.nt.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Lists: | pgsql-hackers |
Syntax:
ALTER TABLE <table> OWNER TO <newowner>
Security:
The owner of a table will be able to change the owner to any other user.
The superuser will NOT have special privileges.
--
Mark Hollomon
mhh(at)nortelnetworks(dot)com
ESN 451-9008 (302)454-9008
| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | "Mark Hollomon" <mhh(at)nortelnetworks(dot)com> |
| Cc: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Proposal : changing table ownership |
| Date: | 2000-09-08 14:43:56 |
| Message-ID: | 24937.968424236@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Lists: | pgsql-hackers |
"Mark Hollomon" <mhh(at)nortelnetworks(dot)com> writes:
> ALTER TABLE <table> OWNER TO <newowner>
> The owner of a table will be able to change the owner to any other user.
Doesn't this create risks parallel to file give-away (chown) in Unix?
A lot of Unices disallow chown except to the superuser.
Tables aren't currently active objects, but we've been talking about
things like making trigger functions run "setuid" to the table owner.
If that happens then table ownership giveaway is a big security hole.
> The superuser will NOT have special privileges.
Say *what* ? That's just silly.
regards, tom lane
| From: | The Hermit Hacker <scrappy(at)hub(dot)org> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Mark Hollomon <mhh(at)nortelnetworks(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Proposal : changing table ownership |
| Date: | 2000-09-08 14:54:30 |
| Message-ID: | Pine.BSF.4.21.0009081153520.493-100000@thelab.hub.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Lists: | pgsql-hackers |
On Fri, 8 Sep 2000, Tom Lane wrote:
> "Mark Hollomon" <mhh(at)nortelnetworks(dot)com> writes:
> > ALTER TABLE <table> OWNER TO <newowner>
>
> > The owner of a table will be able to change the owner to any other user.
>
> Doesn't this create risks parallel to file give-away (chown) in Unix?
> A lot of Unices disallow chown except to the superuser.
Agreed ...
> Tables aren't currently active objects, but we've been talking about
> things like making trigger functions run "setuid" to the table owner.
> If that happens then table ownership giveaway is a big security hole.
>
> > The superuser will NOT have special privileges.
>
> Say *what* ? That's just silly.
*Only* superuser should be able to run the above command ...
| From: | "Mark Hollomon" <mhh(at)nortelnetworks(dot)com> |
|---|---|
| To: | The Hermit Hacker <scrappy(at)hub(dot)org> |
| Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Proposal : changing table ownership |
| Date: | 2000-09-08 15:30:37 |
| Message-ID: | 39B9061D.4EDA3006@americasm01.nt.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Lists: | pgsql-hackers |
The Hermit Hacker wrote:
>
> > "Mark Hollomon" <mhh(at)nortelnetworks(dot)com> writes:
> > > ALTER TABLE <table> OWNER TO <newowner>
>
> *Only* superuser should be able to run the above command ...
Fine with me.
--
Mark Hollomon
mhh(at)nortelnetworks(dot)com
ESN 451-9008 (302)454-9008