Andres Freund <andres@2ndquadrant.com> writes:
> On 2014-06-10 11:14:43 -0400, Tom Lane wrote:
>> Because it would convert the intended behavior (postmaster and only
>> postmaster is exempt from OOM kill) into a situation where possibly
>> all of the database processes are exempt from OOM kill, at the whim
>> of somebody who should not have the privilege to decide that.
> Meh^3. By that argument we need to forbid superusers to create any form
> of untrusted functions. Forbid anything that does malloc(), system(),
> fork(), whatever from a user's influence.
That's utter and complete nonsense. We're discussing an operation that is
root-privileged (ie, lowering a process's OOM score), not random stuff
that unprivileged processes can do.
regards, tom lane