Thread
-
Re: [HACKERS] VACUUM as a denial-of-service attack
Keith Parks <emkxp01@mtcc.demon.co.uk> — 1999-11-23T22:18:53Z
>From: Tom Lane <tgl@sss.pgh.pa.us> >I think a reasonable answer to this is to restrict VACUUM on any >table to be allowed only to the table owner and Postgres superuser. >Does anyone have an objection or better idea? In the dim and distant past I produced a patch that put vacuum into the list of things that you could GRANT on a per-table basis. I don't know what effort it would take to rework that for current or if it would be worth it. I think your suggestion above would be perfect if you never need to allow anyone else to vacuum a table. I'va attached the old patch below. Keith.