Re: [HACKERS] Here it is - view permissions]
Bruce Momjian <maillist@candle.pha.pa.us>
From: Bruce Momjian <maillist@candle.pha.pa.us>
To: scrappy@hub.org (The Hermit Hacker)
Cc: matti@algonet.se, pgsql-hackers@postgreSQL.org
Date: 1998-02-23T13:15:17Z
Lists: pgsql-hackers
> > Why does views default to 'select' permission for 'public'? > > I think most people will never think of the possibility that others > > will be able to SELECT their data through views. > > Should not 'create view' at least print a NOTICE about this? > > Considering how much security we are putting around everything > else, is it unreasonably to have both 'create view'/'create table' default > to 'revoke all' to public, and 'grant all' to owner? Most commercial databases don't do this. -- Bruce Momjian maillist@candle.pha.pa.us