Home > mailing lists

Re: BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION
Date	December 12, 2023 16:55:48
Msg-id	2448878.1702400148@sss.pgh.pa.us Whole thread Raw
In response to	BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION (PG Bug reporting form <noreply@postgresql.org>)
Responses	Re: BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION
List	pgsql-bugs

Tree view

"Wetmore, Matthew (CTR)" <Matthew.Wetmore@express-scripts.com> writes:
> What about a whole new user type:
> An 'Admin' account that isn't a super user, but just has dump/ elevated permissions /customizable.

[ shrug... ]  Maybe, but there's a mighty lot of devils hiding in
the details.  Exactly what special privileges would this user type
need?  How would we convince ourselves (and more to the point,
convince the cloud providers) that such a set of privileges is
safe to give out?  Poking holes in the privilege model is usually
a good way to create security hazards.

BTW, please keep the list cc'd.

            regards, tom lane

pgsql-bugs by date:

From: Tom Lane
Date: 12 December 2023, 15:09:35
Subject: Re: BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION

From: Alvaro Herrera
Date: 12 December 2023, 17:11:44
Subject: Re: BUG #18241: PushTransaction may cause Standby to execute ItemIdMarkDead

Re: BUG #18242: pg_dump with non-superuser from pg14 to pg15 fails on ALTER FUNCTION - Mailing list pgsql-bugs

Previous

Next