Home > mailing lists

Re: Updates of SE-PostgreSQL 8.4devel patches (r1197) - Mailing list pgsql-hackers

From	Simon Riggs
Subject	Re: Updates of SE-PostgreSQL 8.4devel patches (r1197)
Date	November 25, 2008 22:59:51
Msg-id	1227657645.14213.17.camel@hp_dx2400_1 Whole thread Raw
In response to	Re: Updates of SE-PostgreSQL 8.4devel patches (r1197) (KaiGai Kohei <kaigai@kaigai.gr.jp>)
Responses	Re: Updates of SE-PostgreSQL 8.4devel patches (r1197)
List	pgsql-hackers

Tree view

On Mon, 2008-11-24 at 22:09 +0900, KaiGai Kohei wrote:

> I removed the two hooks at the r1244 patch set.
> As you said, it is fundamentally danger to load uncertain binary modules.
> Thus, what we should do is checks on module loading.
> 
> The default security policy requires loadable modules to be labeled as
> 'lib_t' type which means shared library files installed correctly.

We definitely want to include add-in modules with high security systems,
e.g. GIS and oracle compatibility functions.

-- Simon Riggs           www.2ndQuadrant.comPostgreSQL Training, Services and Support

pgsql-hackers by date:

From: Decibel!
Date: 25 November 2008, 22:45:46
Subject: Re: Visibility map, partial vacuums

From: Tom Lane
Date: 25 November 2008, 23:30:43
Subject: Re: Column reordering in pg_dump

Re: Updates of SE-PostgreSQL 8.4devel patches (r1197) - Mailing list pgsql-hackers

Previous

Next