Skip site navigation (1) Skip section navigation (2)

Peripheral Links

Header And Logo

PostgreSQL
| The world's most advanced open source database.

Site Navigation

Search for
  Advanced Search

Re: [PATCH] Re: [pgsql-advocacy] Why READ ONLY transactions?

  • From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
  • To: Sean Chittenden <sean(at)chittenden(dot)org>
  • Cc: Christopher Browne <cbbrowne(at)libertyrms(dot)info>, pgsql-patches(at)postgresql(dot)org, Robert Treat <xzilla(at)users(dot)sourceforge(dot)net>, Gavin Sherry <swm(at)linuxworld(dot)com(dot)au>, pgsql-advocacy(at)postgresql(dot)org
  • Subject: Re: [PATCH] Re: [pgsql-advocacy] Why READ ONLY transactions?
  • Date: Wed, 30 Jul 2003 11:31:55 -0400
  • Message-id: <10760(dot)1059579115(at)sss(dot)pgh(dot)pa(dot)us>
Sean Chittenden <sean(at)chittenden(dot)org> writes:
>> I would NOT call it a "security" provision, as it is fairly easily
>> defeated using SET TRANSACTION.

> Um, why not make it an actual full blown security feature by applying
> the following patch?

It's not intended to be a security measure, and I would strongly resist
any attempt to make it so along the lines you propose.  I do not want to
try to base real security on GUC settings.  The GUC mechanism is not
designed to be unsubvertible, it's designed to allow convenient
administration of a bunch of settings.

In any case, we already have mechanisms for preventing specific users
from altering data: that's what GRANT/REVOKE are for.  I don't think
anyone would have bothered with START TRANSACTION READ ONLY if it
weren't required by the SQL spec.

			regards, tom lane
Home | Main Index | Thread Index

Privacy Policy | PostgreSQL Archives hosted by Command Prompt, Inc. | Designed by tinysofa
Copyright © 1996 – 2008 PostgreSQL Global Development Group