Home > mailing lists

Re: Reworks for Access Control facilities (r2363) - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Reworks for Access Control facilities (r2363)
Date	October 16, 2009 14:33:28
Msg-id	8579.1255714385@sss.pgh.pa.us Whole thread Raw
In response to	Re: Reworks for Access Control facilities (r2363) (Greg Stark <gsstark@mit.edu>)
List	pgsql-hackers

Tree view

Greg Stark <gsstark@mit.edu> writes:
> The first step is to add hooks which don't change the security model
> at all, just allow people to control the existing checks from their SE
> configuration.

This is in fact what the presented patch is meant to do.  The issue is
about whether the hook placement is sane/useful/extensible.  The main
problem I've got with the design is that it doesn't appear to work for
privilege checks made by add-on modules.
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 16 October 2009, 14:23:26
Subject: Re: Deprecation

From: Bruce Momjian
Date: 16 October 2009, 14:35:15
Subject: Re: Rejecting weak passwords

Re: Reworks for Access Control facilities (r2363) - Mailing list pgsql-hackers

Previous

Next