For the non-spec compliant stuff, I was going to add various pg_ views
to accomodate it, but with the spirit of the spec. That is, users can
only see catalog entries which they have access to, and can only view
definitions of entries that they have ownership of.
Anyway, I got the feedback I wanted so I'll start puttering away at
it. Theres a number of minor things missing or slightly out of whack
which I hope to add as well. Timestamps on trigger creation, access
levels on data types, etc.
--
Rod Taylor
Your eyes are weary from staring at the CRT. You feel sleepy. Notice
how restful it is to watch the cursor blink. Close your eyes. The
opinions stated above are yours. You cannot imagine why you ever felt
otherwise.
----- Original Message -----
From: "Bruce Momjian" <pgman@candle.pha.pa.us>
To: "Tom Lane" <tgl@sss.pgh.pa.us>
Cc: "Peter Eisentraut" <peter_e@gmx.net>; "Rod Taylor" <rbt@zort.ca>;
"Hackers List" <pgsql-hackers@postgresql.org>
Sent: Sunday, April 14, 2002 10:38 PM
Subject: Re: [HACKERS] Security Issue..
> Tom Lane wrote:
> > But having said that, I do not foresee being able to replace
direct
> > pg_catalog access with INFORMATION_SCHEMA views anytime soon.
There
> > are too many clients out there that are used to doing it that way.
> >
> > Moreover, pg_dump will never be able to work off
INFORMATION_SCHEMA,
> > because it needs to get at Postgres-specific information that will
> > not be available from a spec-compliant set of views. I'm fairly
> > dubious about converting psql, even.
> >
> > Rod's welcome to work on developing a set of spec-compliant
> > INFORMATION_SCHEMA views ... and maybe he can even turn off public
> > read access to pg_catalog in his own installation ... but he
should
> > not expect us to accept a patch that makes that the default
anytime
> > in the foreseeable future.
>
> Yes, it would be nice to have spec-compliant stuff. However, things
> like psql really get into those catalogs and grab detailed
information
> that is probably not covered the the spec.
>
> --
> Bruce Momjian | http://candle.pha.pa.us
> pgman@candle.pha.pa.us | (610) 853-3000
> + If your life is a hard drive, | 830 Blythe Avenue
> + Christ can be your backup. | Drexel Hill, Pennsylvania
19026
>
> ---------------------------(end of
broadcast)---------------------------
> TIP 1: subscribe and unsubscribe commands go to
majordomo@postgresql.org
>