Home > mailing lists

Re: We broke the defense against accessing other sessions' temp tables - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: We broke the defense against accessing other sessions' temp tables
Date	October 4 20:38:55
Msg-id	1527968.1759599535@sss.pgh.pa.us Whole thread Raw
In response to	Re: We broke the defense against accessing other sessions' temp tables (Jim Jones <jim.jones@uni-muenster.de>)
Responses	Re: We broke the defense against accessing other sessions' temp tables
List	pgsql-hackers

Tree view

Jim Jones <jim.jones@uni-muenster.de> writes:
> I also noticed that it is possible to LOCK a temp table from another
> session (as superuser).

Sure.  Superusers bypass all SQL permissions checks.

> Doesn't it mean that one session can trivially DoS another session's
> private temp table?

Superusers can trivially DoS anybody anytime: lock their tables,
corrupt their data, whatever.  That's a feature not a bug.

            regards, tom lane

pgsql-hackers by date:

From: Amit Kapila
Date: 04 October, 18:54:32
Subject: Re: Logical Replication of sequences

From: Tom Lane
Date: 04 October, 20:47:53
Subject: Re: [PATCH] random_normal function

Re: We broke the defense against accessing other sessions' temp tables - Mailing list pgsql-hackers

Previous

Next