projects / users / rhaas / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cba79a1) | patch
Revoke PUBLIC CREATE from public schema, now owned by pg_database_owner.
authorNoah Misch <noah@leadboat.com>
Fri, 10 Sep 2021 06:38:09 +0000 (23:38 -0700)
committerNoah Misch <noah@leadboat.com>
Fri, 10 Sep 2021 06:38:09 +0000 (23:38 -0700)
commitb073c3ccd06e4cb845e121387a43faa8c68a7b62
tree47e7f43d5ced29aab75de1942f2e905bcba86278tree
parentcba79a163267a44205e391137deb543f4f89bc8bcommit | diff
Revoke PUBLIC CREATE from public schema, now owned by pg_database_owner.

This switches the default ACL to what the documentation has recommended
since CVE-2018-1058.  Upgrades will carry forward any old ownership and
ACL.  Sites that declined the 2018 recommendation should take a fresh
look.  Recipes for commissioning a new database cluster from scratch may
need to create a schema, grant more privileges, etc.  Out-of-tree test
suites may require such updates.

Reviewed by Peter Eisentraut.

Discussion: https://postgr.es/m/20201031163518.GB4039133@rfd.leadboat.com
13 files changed:
contrib/postgres_fdw/expected/postgres_fdw.out diff | blob | blame | history
contrib/postgres_fdw/sql/postgres_fdw.sql diff | blob | blame | history
doc/src/sgml/ddl.sgml diff | blob | blame | history
doc/src/sgml/user-manag.sgml diff | blob | blame | history
src/bin/initdb/initdb.c diff | blob | blame | history
src/bin/pg_dump/pg_dump.c diff | blob | blame | history
src/bin/pg_dump/t/002_pg_dump.pl diff | blob | blame | history
src/include/catalog/catversion.h diff | blob | blame | history
src/include/catalog/pg_namespace.dat diff | blob | blame | history
src/pl/plperl/expected/plperl_setup.out diff | blob | blame | history
src/pl/plperl/sql/plperl_setup.sql diff | blob | blame | history
src/test/regress/input/tablespace.source diff | blob | blame | history
src/test/regress/output/tablespace.source diff | blob | blame | history
Robert Haas's development tree.