Re: [HACKERS] Here it is - view permissions]

Bruce Momjian <maillist@candle.pha.pa.us>

From: Bruce Momjian <maillist@candle.pha.pa.us>
To: scrappy@hub.org (The Hermit Hacker)
Cc: matti@algonet.se, pgsql-hackers@postgreSQL.org
Date: 1998-02-23T13:15:17Z
Lists: pgsql-hackers
> > Why does views default to 'select' permission for 'public'?
> > I think most people will never think of the possibility that others
> > will be able to SELECT their data through views.
> > Should not 'create view' at least print a NOTICE about this?
> 
> 	Considering how much security we are putting around everything
> else, is it unreasonably to have both 'create view'/'create table' default
> to 'revoke all' to public, and 'grant all' to owner?

Most commercial databases don't do this.

-- 
Bruce Momjian
maillist@candle.pha.pa.us