Home > mailing lists

Re: dblink connection security - Mailing list pgsql-patches

From	Stephen Frost
Subject	Re: dblink connection security
Date	July 9, 2007 03:57:21
Msg-id	20070709035717.GS4887@tamriel.snowman.net Whole thread Raw
In response to	Re: dblink connection security (Joe Conway <mail@joeconway.com>)
Responses	Re: dblink connection security (Joe Conway <mail@joeconway.com>)
List	pgsql-patches

Tree view

* Joe Conway (mail@joeconway.com) wrote:
> Consider a scenario like "package <x> uses <arbitrary function y in an
> untrusted language z>". Exact same concerns arise.

No, it doesn't...  Said arbitrary function in y, in untrusted language
z, could be perfectly safe for users to call.  Being written in an
untrusted language has got next to nothing to do with the security
implications of a particular function.  It depends entirely on what the
function is *doing*, not what language it's written in.

    Thanks,

        Stephen

Attachment

signature.asc

pgsql-patches by date:

From: Stephen Frost
Date: 09 July 2007, 03:55:33
Subject: Re: dblink connection security

From: Gregory Stark
Date: 09 July 2007, 04:01:39
Subject: Re: dblink connection security

Re: dblink connection security - Mailing list pgsql-patches

Attachment

Previous

Next