Home > mailing lists

Re: Security implications of config-file-location patch - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Security implications of config-file-location patch
Date	October 8, 2004 18:19:02
Msg-id	12127.1097245128@sss.pgh.pa.us Whole thread Raw
In response to	Re: Security implications of config-file-location patch ("Zeugswetter Andreas DAZ SD" <ZeugswetterA@spardat.at>)
List	pgsql-hackers

Tree view

"Zeugswetter Andreas DAZ SD" <ZeugswetterA@spardat.at> writes:
>> Good point.  Should we obscure pg_tablespace similarly to 
>> what we do for pg_shadow?

> Hmm, I can not see how a person with file access could not easily find the 
> file for a specific table without pg_tablespace anyway (since oid names will 
> be quite unique). Without file access, what malicious act is he going to do 
> with that info ? 

> I think hiding that info would not really be safer, thus not worth it.

Do you also feel that there's no need to hide the values of the GUC
variables pgdata etc?
        regards, tom lane

pgsql-hackers by date:

From: Euler Taveira de Oliveira
Date: 08 October 2004, 17:25:53
Subject: Re: initdb crash

From: Bruce Momjian
Date: 08 October 2004, 18:34:23
Subject: Problem with CIDR data type restrictions

Re: Security implications of config-file-location patch - Mailing list pgsql-hackers

Previous

Next