Home > mailing lists

Re: [HACKERS] [PATCH] Re: Setuid functions - Mailing list pgsql-patches

From	Bruce Momjian
Subject	Re: [HACKERS] [PATCH] Re: Setuid functions
Date	July 12, 2001 18:25:14
Msg-id	200107121842.f6CIgVX22517@candle.pha.pa.us Whole thread Raw
List	pgsql-patches

Tree view

Done.

> Might as well just get rid of that one; Peter's right about the security hole.
>
> The simplest fix I see is to allow SET AUTHORIZATION only in superuser-owned
> functions. It would still be potentially useful that way. Doing this the
> "right" way (with users needing regrantable privileges, etc.) would involve
> too much effort for too little reward, IMHO.
>
> Mark
>
> Bruce Momjian wrote:
> >
> > I am backing out this SET AUTHORIZATION patch until we can resolve the
> > security issues.  It will remain in the patch queue at:
> >
> >         http://candle.pha.pa.us/cgi-bin/pgpatches
> >
>

--
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman@candle.pha.pa.us               |  (610) 853-3000
  +  If your life is a hard drive,     |  830 Blythe Avenue
  +  Christ can be your backup.        |  Drexel Hill, Pennsylvania 19026

pgsql-patches by date:

From: Bruce Momjian
Date: 12 July 2001, 17:45:06
Subject: Re: python installation patch.

From: Bruce Momjian
Date: 12 July 2001, 19:26:05
Subject: Re: [JDBC] [PATCH] Cleanup of JDBC character encoding

Re: [HACKERS] [PATCH] Re: Setuid functions - Mailing list pgsql-patches

Previous

Next