Re: restrict pg_stat_ssl to superuser?

Michael Paquier <michael@paquier.xyz>

From: Michael Paquier <michael@paquier.xyz>
To: Peter Eisentraut <peter.eisentraut@2ndquadrant.com>
Cc: pgsql-hackers <pgsql-hackers@postgresql.org>
Date: 2019-02-18T03:58:13Z
Lists: pgsql-hackers
On Fri, Feb 15, 2019 at 02:04:59PM +0100, Peter Eisentraut wrote:
> We could remove default privileges from pg_stat_get_activity().  Would
> that be a problem?

I don't think so, still I am wondering about the impact that this
could have for monitoring tools calling it directly as we document
it.. 
--
Michael

Commits

  1. Hide other user's pg_stat_ssl rows

  2. doc: Add security information about pg_stat_activity