Re: Catalog Security WAS: Views, views, views: Summary

On Sat, May 14, 2005 at 08:55:17AM -0400, Stephen Frost wrote:
> * Christopher Kings-Lynne (chriskl@familyhealth.com.au) wrote:
> > >It bothers me a great deal that I can't control very easily what a given
> > >user can see when they connect over ODBC or via phppgadmin in terms of
> > >schemas, tables and columns.  I fixed this in application code in
> > >phppgadmin but that's clearly insufficient since it doesn't do anything
> > >for the other access methods.
> > 
> > Hackers - we get an email about information hiding in shared 
> > postgresql/phppgadmin installations at least once a fortnight :)
> 
> I agree with this- it needs to be dealt with and fixed already, once and
> for all.

Given that the newsysviews all base visibility on granted permissions,
would they do the job for you?
-- 
Jim C. Nasby, Database Consultant               decibel@decibel.org 
Give your computer some brain candy! www.distributed.net Team #1828

Windows: "Where do you want to go today?"
Linux: "Where do you want to go tomorrow?"
FreeBSD: "Are you guys coming, or what?"