Home > mailing lists

Re: [patch] fix dblink security hole - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [patch] fix dblink security hole
Date	September 22, 2008 03:44:10
Msg-id	26935.1222055045@sss.pgh.pa.us Whole thread Raw
In response to	Re: [patch] fix dblink security hole (Joe Conway <mail@joeconway.com>)
List	pgsql-hackers

Tree view

Joe Conway <mail@joeconway.com> writes:
> Tom Lane wrote:
>> Refactoring doesn't seem like an easy way to fix this, because of the
>> problem that the behavior of pulling up defaults is part of the API
>> specification for PQconndefaults().

> conninfo_parse() is presently only called from a few places -- maybe we 
> should have conninfo_parse() really just parse, and create a new 
> conninfo_get_missing() or some such that fills in missing values?

Doh, I must be too tired, because now that seems obvious.  Will set this
aside and try it again tomorrow.
        regards, tom lane

pgsql-hackers by date:

From: Joe Conway
Date: 22 September 2008, 03:40:07
Subject: Re: [patch] fix dblink security hole

From: Joe Conway
Date: 22 September 2008, 03:44:16
Subject: Re: [patch] fix dblink security hole

Re: [patch] fix dblink security hole - Mailing list pgsql-hackers

Previous

Next