Kirill Reshke <reshkekirill@gmail.com> writes:
> On Tue, 14 Oct 2025, 18:27 jian he, <jian.universality@gmail.com> wrote:
>> If you're the table owner, you should be allowed to use get_raw_page (and
>> other pageinspect module functions)?
> I was also wondering if there is any security vulnerability with that.
> I was thinking about page lsn, checkpoint and wal compression as a possible
> way to abuse, but did not managed to came up with exploit
Yeah, I do not think it follows that being table owner should
entitle you to such low-level access. I'm inclined to reject
this proposal.
regards, tom lane