Home > mailing lists

Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client. - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client.
Date	March 17, 2009 00:50:57
Msg-id	28027.1237251036@sss.pgh.pa.us Whole thread Raw
In response to	Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client. (Heikki Linnakangas <heikki.linnakangas@enterprisedb.com>)
Responses	Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client. ("Jonah H. Harris" <jonah.harris@gmail.com>) Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client. (Martijn van Oosterhout <kleptog@svana.org>)
List	pgsql-hackers

Tree view

Heikki Linnakangas <heikki.linnakangas@enterprisedb.com> writes:
> Hmm, I wonder if you could do something malicious with it.

There are any number of scenarios where exposing the client command-line
contents to other database users represents a security hole, quite
independently of whether anything falls over depending on the line
contents.  (I wonder whether there are any Oracle clients that accept
a password on the command line, for instance.)

The only reason this complaint is directed to us, and not Oracle,
is that the complainant knows how far he's likely to get complaining
to Oracle :-(
        regards, tom lane

pgsql-hackers by date:

From: Bruce Momjian
Date: 16 March 2009, 22:26:40
Subject: Re: small but useful patches for text search

From: Tom Lane
Date: 17 March 2009, 00:57:07
Subject: Re: typmod is always -1

Re: Problem with accesing Oracle from plperlu functionwhen using remote pg client. - Mailing list pgsql-hackers

Previous

Next