Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1sAVQS-00AJxw-DM for pgsql-hackers@arkaria.postgresql.org; Fri, 24 May 2024 13:57:41 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.94.2) (envelope-from ) id 1sAVQS-005sHl-3y for pgsql-hackers@arkaria.postgresql.org; Fri, 24 May 2024 13:57:40 +0000 Received: from makus.postgresql.org ([2001:4800:3e1:1::229]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1sAVQR-005sFf-Ph for pgsql-hackers@lists.postgresql.org; Fri, 24 May 2024 13:57:39 +0000 Received: from sss.pgh.pa.us ([68.162.161.243]) by makus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1sAVQP-001mtk-2H for pgsql-hackers@lists.postgresql.org; Fri, 24 May 2024 13:57:38 +0000 Received: from sss1.sss.pgh.pa.us (localhost [127.0.0.1]) by sss.pgh.pa.us (8.15.2/8.15.2) with ESMTP id 44ODvas1649062; Fri, 24 May 2024 09:57:36 -0400 From: Tom Lane To: "Karki, Sanjay" cc: "pgsql-hackers@lists.postgresql.org" Subject: Re: PG catalog In-reply-to: References: Comments: In-reply-to "Karki, Sanjay" message dated "Thu, 23 May 2024 22:01:41 -0000" MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <649060.1716559056.1@sss.pgh.pa.us> Content-Transfer-Encoding: quoted-printable Date: Fri, 24 May 2024 09:57:36 -0400 Message-ID: <649061.1716559056@sss.pgh.pa.us> List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk "Karki, Sanjay" writes: > I need to grant select on privilege in pg_catalog to user so I can conne= ct via Toad Data point , Why do you think you need to do that? Most catalogs have public select privilege already, and for the ones that don't, there are very good reasons why not. I don't know what "Toad Data point" is, but if it thinks it needs more privilege than is normally granted, you should be asking very pointed questions about why and why that shouldn't be considered a security breach. (Usually we get complaints that the default permissions on the catalogs are too loose, not too tight.) regards, tom lane