Home > mailing lists

Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+ - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+
Date	May 26, 2003 05:16:02
Msg-id	25845.1053929759@sss.pgh.pa.us Whole thread Raw
In response to	Expect problems with PL/Python and Python version 2.2.3+ & 2.3+ (Sean Reifschneider <jafo@tummy.com>)
Responses	Re: Expect problems with PL/Python and Python version 2.2.3+ (Guido van Rossum <guido@python.org>)
List	pgsql-hackers

Tree view

Sean Reifschneider <jafo@tummy.com> writes:
> For those unfamiliar with it, rexec provides a restricted execution
> environment, limiting access to certain Python and system routines.
> This functionality is being deprecated in Python, due to security
> problems and lack of maintainership to resolve them...

Is no substitute solution being offered?

> It may be appropriate to just remove the rexec, with the result being
> that PL/Python code will be able to have access to basically anything on
> the system as the user PostgreSQL is running as.

We would have to change it to an untrusted language.  We could do that,
but it would mean a major reduction in the usefulness of plpython.
Few DBAs of average paranoia levels want to give superuser access to
their database users.
        regards, tom lane

pgsql-hackers by date:

From: Alvaro Herrera
Date: 26 May 2003, 03:24:52
Subject: Re: Testing patches

From: Tom Lane
Date: 26 May 2003, 05:23:04
Subject: Re: Testing patches

Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+ - Mailing list pgsql-hackers

Previous

Next