From: Ded <de...@hq...> - 2001-04-24 19:54:40
|
"Ann W. Harrison" wrote: > I would like to see security work on the system tables just as > it does on user tables, so I say that the behavior is ok. If > someone has select access to a table, granting it again is fine. > If it is revoked, then that user doesn't have access to the table, > even though it was granted twice and revoked only once. Hi, Ann. I'm confused a little: if all is so simply, why system tables except rdb$roles are not present in rdb$user_privileges and rdb$security_classes initally? And why after grant/revoke rdb$relations expires from rdb$user_privileges but remains in rdb$security_classes (my understanding of rdb$security_classes is limited by short description in Language Reference, I don't know what means 9:10 in rdb$acl)? Is'nt possibility to affect it with grant/revoke some mix of rules? I don't intend this is bug but this is somewhat unexpected (to me) and I interested on final deceision. Best regads. |