Home > mailing lists

Re: Updates of SE-PostgreSQL 8.4devel patches (r1268) - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: Updates of SE-PostgreSQL 8.4devel patches (r1268)
Date	December 11, 2008 15:16:19
Msg-id	200812111816.07853.peter_e@gmx.net Whole thread Raw
In response to	Re: Updates of SE-PostgreSQL 8.4devel patches (r1268) (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: Updates of SE-PostgreSQL 8.4devel patches (r1268) (KaiGai Kohei <kaigai@kaigai.gr.jp>) Re: Updates of SE-PostgreSQL 8.4devel patches (r1268) (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

On Thursday 11 December 2008 17:09:25 Tom Lane wrote:
> I think there should be only *one* underlying column and that it should
> be manipulable by either SQL commands or selinux.  Otherwise you're
> making a lie of the primary argument for having the SQL feature at all.

Well, an SQL-manipulated row security column will probably have a content like
   {joe=rw/bob,staff=r/bob}

An SELinux-aware row security column will probably have a content like
  blah_t:foo_t:quux_t

And a Solaris TX-aware security column will probably have a content like
  Classified

How can we stick all of these in the same column at the same time?

pgsql-hackers by date:

From: "Robert Haas"
Date: 11 December 2008, 15:15:46
Subject: Re: Updates of SE-PostgreSQL 8.4devel patches (r1268)

From: "Pavel Stehule"
Date: 11 December 2008, 15:21:04
Subject: Re: COCOMO & Indians

Re: Updates of SE-PostgreSQL 8.4devel patches (r1268) - Mailing list pgsql-hackers

Previous

Next