| Subject | Re: [firebird-support] must I grant select in order to DELETE ... WHERE, |
|---|---|
| Author | Ann W. Harrison |
| Post date | 2005-03-01T19:38:37Z |
miloshd2003 wrote:
reason for requiring select privilege on a searched delete is that the
delete could be used to probe data. A sequence like this:
select count (*) from employees;
delete from employees where name = 'Ann' and salary > 20000;
select count (*) from employees;
rollback;
delete from employees where name = 'Ann' and salary > 10000;
etc.
Ann
>As people have no doubt told you, you can make the view updateable. The
> Do I have to grant SELECT permission on a table T in order to allow
> the user to execute:
>
> DELETE FROM T WHERE ID=5
>
> I can wipe the table (DELETE FROM T), but if I try to reference any
> fields, FB complains (see below)... BTW, user sees the data through a
> view, but the view references several tables and thus isn't
> updateable.
reason for requiring select privilege on a searched delete is that the
delete could be used to probe data. A sequence like this:
select count (*) from employees;
delete from employees where name = 'Ann' and salary > 20000;
select count (*) from employees;
rollback;
delete from employees where name = 'Ann' and salary > 10000;
etc.
Ann