Re: Bug #746: Drop user damages security on tables
От | Tom Lane |
---|---|
Тема | Re: Bug #746: Drop user damages security on tables |
Дата | |
Msg-id | 23055.1030372956@sss.pgh.pa.us обсуждение исходный текст |
Ответ на | Bug #746: Drop user damages security on tables (pgsql-bugs@postgresql.org) |
Список | pgsql-bugs |
pgsql-bugs@postgresql.org writes: > A user was setup and had GRANT permissions on individual tables in a database. After the user was dropped, using the /zfrom psql command line showed the user ID still existing in the individual table permissions. After the drop, severalother users then were unable to execute SELECT or INSERT on this table. These users would get a -601 error when tryingto do a SELECT or INSERT. Also, trying to REVOKE permissions on the user ID that belonged to the dropped user resultedin a parse error. What is a "-601 error"? There's surely no such message in Postgres. Also, "a parse error" is quite an unhelpful report. Show us the exact command you tried to issue. It's true that DROP USER doesn't do anything about removing ACL entries that reference that user, but there are no known problems resulting from that, so I'm suspicious that your report is entirely user error. Without seeing a reproducible test case it's difficult to do anything anyway. regards, tom lane
В списке pgsql-bugs по дате отправления: