| From: | Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp> |
|---|---|
| To: | Robert Haas <robertmhaas(at)gmail(dot)com> |
| Cc: | PgHacker <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Add permission checks on SELECT INTO |
| Date: | 2011-11-02 10:41:19 |
| Message-ID: | CADyhKSX7iu906341SXgTy=i7H1FnqzDreK0B-nOve3X9=Ukapw@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
This patch adds checks of INSERT permission on new tables constructed
by SELECT INTO or CREATE TABLE AS.
It does not change existing behavior except for tiny bit of cases when
a default privilege setting does not allow owner to insert tuples,
because table's default acl allows everything to its owner.
However, this check has significant meaning from the perspective of
mac; to prevent a user who can reference credential information to
write-out tables with public label; this characteristic is called as
data-flow-control.
Please also see the previous discussion as: http://bit.ly/uxeOhO
Thanks,
--
KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp>
| Attachment | Content-Type | Size |
|---|---|---|
| pgsql-v9.2-add-select-into-checks.v1.patch | application/octet-stream | 2.6 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Kohei KaiGai | 2011-11-02 11:34:42 | Re: [v9.2] Fix Leaky View Problem |
| Previous Message | Simon Riggs | 2011-11-02 09:33:03 | Re: unite recovery.conf and postgresql.conf |