Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: Connection limit and Superuser
- From: Andrew Dunstan <andrew(at)dunslane(dot)net>
- To: "Joshua D. Drake" <jd(at)commandprompt(dot)com>
- Cc: PostgreSQL Development <pgsql-hackers(at)postgresql(dot)org>
- Subject: Re: Connection limit and Superuser
- Date: Mon, 31 Jul 2006 11:58:30 -0400
Joshua D. Drake wrote:
As a protection against malice, yes. I think Rod was more interested in some protection against stupidity.Maybe the real answer is that Slony should connect as a non-superuser and call security definer functions for the privileged things it needs to do.Wouldn't that break Slony's ability to connect to older postgresql versions and replicate?
I don't know anything of Slony's internals, but I don't see why older versions should matter - Postgres has had security definer functions for every release that Slony supports. Maybe I'm missing something ...
cheers andrew
- Follow-Ups:
- Re: Connection limit and Superuser
- From: Chris Browne
- Re: Connection limit and Superuser
- References:
- Connection limit and Superuser
- From: Rod Taylor
- Re: Connection limit and Superuser
- From: Martijn van Oosterhout
- Re: Connection limit and Superuser
- From: Andrew Dunstan
- Re: Connection limit and Superuser
- From: Tom Lane
- Re: Connection limit and Superuser
- From: Andrew Dunstan
- Re: Connection limit and Superuser
- From: Joshua D. Drake
- Connection limit and Superuser
- Prev by Date: Re: Connection limit and Superuser
- Next by Date: Re: [PATCHES] extension for sql update
- Previous by thread: Re: Connection limit and Superuser
- Next by thread: Re: Connection limit and Superuser
- Indexes: