On Mon, Jan 3, 2011 at 11:20 AM, Tom Lane <[email protected]> wrote: > Robert Haas <[email protected]> writes: >> On the other hand, the REPLICATION privilege is denying you the right to >> perform an operation *even though you already are authenticated as a >> superuser*. I don't think there's anywhere else in the system where >> we allow a privilege to non-super-users but deny that same privilege >> to super-users, and I don't think we should be starting now. > > You might want to reflect on rolcatupdate a bit before asserting that > there are no cases where privileges are ever denied to superusers.
Oh, huh. I wasn't aware of that. > However, that precedent would suggest that the default should be to > grant the replication bit to superusers. Yes it would. -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company -- Sent via pgsql-hackers mailing list ([email protected]) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
