|| at Jan 8, 2002 at 8:45 am
From: Peter Eisentraut
Sent: 07 January 2002 22:36
To: PostgreSQL Development
Subject: Default permissions of system catalogs
Currently, system catalogs (pg_*) are assumed to be readable
by anyone if the privileges are NULL, as opposed to ordinary
tables, which assume only owner access if the privileges are NULL.
I'm currently working on privileges for functions (see also
Nov. 13 message, which apparently stunned everyone into
silence), which will need some sort of similar arrangement,
only there's no obvious way to find out if a function is a
I think the best solution would be to drop the pg_* exception
and explicitly grant the right privileges to each table and
function in initdb.
I assume you are proposing the same privileges that you describe for a user
table (i.e. by default only the owner (==superuser) has any access)?
If so, this would break pgAdmin for any users who are not the superuser on
their system as the majority of it's operation relies on examining the
system catalogues. In this case I would *strongly* object.
<thinks...> Surely this would also be the case for psql though - have I