Read-only users can currently enable/disable the query profiler. As enabling the query profiler creates write load, we might consider removing that ability from the "read-only" role. Of course, if we introduce more sophisticated roles, this problem might go away in a different manner.