Matthew Horoschun <[EMAIL PROTECTED]> writes:
> My understanding is that I need to GRANT the UPDATE privilege on the
> SEQUENCE if I want a user to be able to to use nextval() on it. The
> trouble is, if they can do a nextval() they can also do a setval()
So? With enough time on your hands, you can apply nextval() often
enough to get from any point A to any point B. It seems illusory
to think that forbidding setval() makes things more secure.
regards, tom lane
---------------------------(end of broadcast)---------------------------
TIP 5: Have you checked our extensive FAQ?
http://www.postgresql.org/users-lounge/docs/faq.html
