Thread

  1. Re: [HACKERS] Postgres acl (fwd)

    Bruce Momjian <maillist@candle.pha.pa.us> — 1998-01-07T02:23:13Z

    > >
    > > IMHO, the system tables should _never_ be directly modifiable by anyone
    > > other than the superuser/dba.  The rest of the population should have to
    > > use a command of some sort that can be grant/revoked by said superuser/dba.
    > 
    > Are there any maintenance operations which require a "delete from pg_xxx"? If
    > not, then we could just modify the parser (or the executor?) to check the table
    > name and not allow insert/delete from any table whose name starts with "pg_". Had
    > to ask, although I'm sure this is too easy to actually work :)
    
    Interesting thought.  Wonder if it would work?
    
    -- 
    Bruce Momjian
    maillist@candle.pha.pa.us