Re: [HACKERS] Here it is - view permissions]
Marc Fournier <scrappy@hub.org>
From: The Hermit Hacker <scrappy@hub.org>
To: Bruce Momjian <maillist@candle.pha.pa.us>
Cc: matti@algonet.se, pgsql-hackers@postgreSQL.org
Date: 1998-02-23T13:39:39Z
Lists: pgsql-hackers
On Mon, 23 Feb 1998, Bruce Momjian wrote: > > > Why does views default to 'select' permission for 'public'? > > > I think most people will never think of the possibility that others > > > will be able to SELECT their data through views. > > > Should not 'create view' at least print a NOTICE about this? > > > > Considering how much security we are putting around everything > > else, is it unreasonably to have both 'create view'/'create table' default > > to 'revoke all' to public, and 'grant all' to owner? > > Most commercial databases don't do this. Well, just checked with Wayne (My Oracle Guru) and in Oracle, everything is private by default, and you open it up as required/desired to other ppl...