Permission of prepared statements (was: pg_stat_statements)

Поиск
Список
Период
Сортировка
От ITAGAKI Takahiro
Тема Permission of prepared statements (was: pg_stat_statements)
Дата
Msg-id 20080616162234.752E.52131E4D@oss.ntt.co.jp
обсуждение исходный текст
Ответ на Re: pg_stat_statements  (Tom Lane <tgl@sss.pgh.pa.us>)
Список pgsql-hackers
Дерево обсуждения 
Tom Lane <tgl@sss.pgh.pa.us> wrote:

> We don't have any system-wide names for statements, so this seems
> pretty ill-defined and of questionable value.  Showing the text of
> statements in a view also has security problems.

I found we can execute prepared statements and view the sql source through
pg_prepared_statements even after we execute SET SESSION AUTHORIZATION.
Is this an expected behavior?

It is not a problem in normal use because the *real* user is same
before and after changing ROLEs, but we should be careful about
sharing connections between different users in connection pooling.
Almost connection poolings don't do that, though.

Regards,
---
ITAGAKI Takahiro
NTT Open Source Software Center

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Andrew Sullivan
Дата:
Сообщение: Re: TODO Item: Allow pg_hba.conf to specify host names along with IP addresses
Следующее
От: Peter Eisentraut
Дата:
Сообщение: Re: TODO Item: Allow pg_hba.conf to specify host names along with IP addresses