Re: RFC: common database policy/infrastracture

To: Oliver Elphick <olly@lfix.co.uk>
Cc: sean finney <seanius@seanius.net>, Andreas Tille <tillea@rki.de>, Ian Haywood <ihaywood@gnu.org>, Debian Developers <debian-devel@lists.debian.org>
Subject: Re: RFC: common database policy/infrastracture
From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
Date: Thu, 23 Dec 2004 11:52:09 +0100
Message-id: <[🔎] 20041223115209.I568@hermes.hilbert.loc>
In-reply-to: <[🔎] 1103798144.13064.16.camel@linda>
References: <Pine.LNX.4.61.0412132032310.7146@wr-linux02> <20041216004440.GB10884@seanius.net> <[🔎] Pine.LNX.4.61.0412160731400.7600@wr-linux02> <[🔎] 20041216154152.GA22529@seanius.net> <[🔎] Pine.LNX.4.61.0412161715120.7600@wr-linux02> <[🔎] 20041219201937.GA16016@seanius.net> <[🔎] 20041220110200.C668@hermes.hilbert.loc> <[🔎] 20041221184027.GA18785@seanius.net> <[🔎] 20041221202752.X643@hermes.hilbert.loc> <[🔎] 1103798144.13064.16.camel@linda>

> In PostgreSQL, any user that can create other users is the equivalent of
> superuser;
Or so the 7.4 docs say.

> he can do anything to any database.
If that were so ...

> It is not acceptable for
> a database application package to create such users.
... this would hold true.

However, if I create a table as "postgres" in a database and
then connect as user "gm-dbowner" (which is our application
admin account with CREATEUSER and CREATEDB rights) I can *not*
insert into that table. Which seems to go contrary to what the
docs say.

Also, usesuper in pg_user is FALSE for gm-dbowner.

What is the definitive deal ?

Karsten
-- 
GPG key ID E4071346 @ wwwkeys.pgp.net
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346

Reply to:

Follow-Ups:
- Re: RFC: common database policy/infrastracture
  - From: Oliver Elphick <olly@lfix.co.uk>

References:
- Re: RFC: common database policy/infrastracture
  - From: Andreas Tille <tillea@rki.de>
- Re: RFC: common database policy/infrastracture
  - From: sean finney <seanius@debian.org>
- Re: RFC: common database policy/infrastracture
  - From: Andreas Tille <tillea@rki.de>
- Re: RFC: common database policy/infrastracture
  - From: sean finney <seanius@seanius.net>
- Re: RFC: common database policy/infrastracture
  - From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
- Re: RFC: common database policy/infrastracture
  - From: sean finney <seanius@seanius.net>
- Re: RFC: common database policy/infrastracture
  - From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
- Re: RFC: common database policy/infrastracture
  - From: Oliver Elphick <olly@lfix.co.uk>

Prev by Date: Re: Article about apt-build
Next by Date: Re: RFC: common database policy/infrastracture
Previous by thread: Re: RFC: common database policy/infrastracture
Next by thread: Re: RFC: common database policy/infrastracture
Index(es):
- Date
- Thread