Home > mailing lists

Re: Should creating a new base type require superuser status? - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Should creating a new base type require superuser status?
Date	July 31, 2008 21:23:24
Msg-id	23846.1217539394@sss.pgh.pa.us Whole thread Raw
In response to	Re: Should creating a new base type require superuser status? (Kris Jurka <books@ejurka.com>)
Responses	Re: [Pljava-dev] Should creating a new base type require superuser status? (Thomas Hallgren <thomas@tada.se>)
List	pgsql-hackers

Tree view

Kris Jurka <books@ejurka.com> writes:
> On Wed, 30 Jul 2008, Alvaro Herrera wrote:
>> I do agree that creating base types should require a superuser though.
>> It too seems dangerous just on principle, even if today there's no
>> actual hole (that we already know of).

> pl/java already allows non-superusers to create functions returning 
> cstring and base types built off of these functions.

So in other words, if pl/java is installed we have a security hole
a mile wide.
        regards, tom lane

pgsql-hackers by date:

From: Alvaro Herrera
Date: 31 July 2008, 21:09:36
Subject: Re: Review: DTrace probes (merged version) ver_03

From: Alvaro Herrera
Date: 31 July 2008, 22:19:48
Subject: Re: Review: DTrace probes (merged version) ver_03

Re: Should creating a new base type require superuser status? - Mailing list pgsql-hackers

Previous

Next