|Subject||Re: [Firebird-Architect] External engines - metadata|
> On Friday 19 October 2007 15:10, Vlad Khorsun wrote:CREATE any kind of PROCEDURE must be granted. And CREATE non-SQL
> > > And Vlad - WHY should grant to CREATE DATABASE mean grant to execute
> > > arbitrary code on a server? How is it related?
> > Its not related. At least it must be not related. Where i said contrary
> > ? ;)
> Looks like I have not understood you. sorry. I.e. you are agree that creating
> routines using unsafe languages should be granted separately?
procedure must not be granted to OWNER by default. Or, even better, not
CREATE but EXECUTE\SELECT