Bruce Momjian <pgman@candle.pha.pa.us> writes:
>> Because (a) it greatly increases the scope of the vulnerability,
> How? It is just a new authentication method with the same problems as
> our current ones.
No, it is not *a* new authentication method, it is an open interface
that could be plugged into almost anything. We need the top-level
postmaster process to be absolutely reliable; plugging into "almost
anything" is not conducive to reliability.
Besides, an hour ago you were ready to reject this patch for lack of
interest. Why are you suddenly so eager to ignore the risks and apply
it anyway?
regards, tom lane