Re: dblink connection security - Mailing list pgsql-patches

From Stephen Frost
Subject Re: dblink connection security
Date
Msg-id 20070709035717.GS4887@tamriel.snowman.net
Whole thread Raw
In response to Re: dblink connection security  (Joe Conway <mail@joeconway.com>)
Responses Re: dblink connection security
List pgsql-patches
* Joe Conway (mail@joeconway.com) wrote:
> Consider a scenario like "package <x> uses <arbitrary function y in an
> untrusted language z>". Exact same concerns arise.

No, it doesn't...  Said arbitrary function in y, in untrusted language
z, could be perfectly safe for users to call.  Being written in an
untrusted language has got next to nothing to do with the security
implications of a particular function.  It depends entirely on what the
function is *doing*, not what language it's written in.

    Thanks,

        Stephen

Attachment

pgsql-patches by date:

Previous
From: Stephen Frost
Date:
Subject: Re: dblink connection security
Next
From: Gregory Stark
Date:
Subject: Re: dblink connection security