Home > mailing lists

Re: [HACKERS] Possible make_oidjoins_check Security Issue - Mailing list pgsql-patches

From	Neil Conway
Subject	Re: [HACKERS] Possible make_oidjoins_check Security Issue
Date	November 4, 2004 02:22:47
Msg-id	1099524064.23392.3.camel@localhost.localdomain Whole thread Raw
In response to	Re: [HACKERS] Possible make_oidjoins_check Security Issue (Bruce Momjian <pgman@candle.pha.pa.us>)
Responses	Re: [HACKERS] Possible make_oidjoins_check Security Issue (Bruce Momjian <pgman@candle.pha.pa.us>)
List	pgsql-patches

Tree view

On Thu, 2004-11-04 at 10:07, Bruce Momjian wrote:
> My method is secure, and I think we do have to handle this in a way that
> addresses the security concerns.

I think Tom's fix adequately addresses the security concerns. Exactly
what is wrong with writing to the current working directory?

> It is easy to say no one would run
> this under normal use but that isn't really a safe answer for the
> security folks, I think.

This is a non-sequitor -- I don't think Tom or anyone else has argued
this.

-Neil

pgsql-patches by date:

From: Bruce Momjian
Date: 04 November 2004, 02:07:32
Subject: Re: [HACKERS] Possible make_oidjoins_check Security Issue

From: Bruce Momjian
Date: 04 November 2004, 02:28:40
Subject: Re: [HACKERS] Possible make_oidjoins_check Security Issue

Re: [HACKERS] Possible make_oidjoins_check Security Issue - Mailing list pgsql-patches

Previous

Next