On Thu, 14 Aug 2003, Diego Linke - GAMK wrote:
> Your name : Diego Linke
> Your email address : gamk@gamk.com.br
>
> System Configuration
> ---------------------
> Architecture (example: Intel Pentium) : Intel
>
> Operating System (example: Linux 2.0.26 ELF) : NetBSD 1.6.1_STABLE
>
> PostgreSQL version (example: PostgreSQL-7.3.2): PostgreSQL-7.3.2
>
> Compiler used (example: gcc 2.95.2) : 2.95.3 20010315
>
> Please enter a FULL description of your problem:
> ------------------------------------------------
>
> The problem is that postgresql when calls a function in external C,
> calls with user of the postgres.
> A bad user will be able to create binary with shell suid for the user
> of postgres, and to assume the control of postgres (pg_hba.conf,
> bases, postmaster, at last everything that the user of postgres can
> make).
Only a bad database superuser should be able to do anything of the sort
because normal users shouldn't be allowed to use CREATE FUNCTION with C
language functions (it's untrusted), are you seeing something different?