> On Friday 19 October 2007 15:10, Vlad Khorsun wrote:
> > > And Vlad - WHY should grant to CREATE DATABASE mean grant to execute
> > > arbitrary code on a server? How is it related?
>
> > Its not related. At least it must be not related. Where i said contrary
> > ? ;)
>
> Looks like I have not understood you. sorry. I.e. you are agree that creating
> routines using unsafe languages should be granted separately?

CREATE any kind of PROCEDURE must be granted. And CREATE non-SQL
procedure must not be granted to OWNER by default. Or, even better, not
CREATE but EXECUTE\SELECT

Regards,
Vlad