Home > mailing lists

Re: Possible major bug in PlPython (plus some other ideas) - Mailing list pgsql-hackers

From	Hannu Krosing
Subject	Re: Possible major bug in PlPython (plus some other ideas)
Date	November 9, 2001 17:18:36
Msg-id	3BEC0D09.B7D1D4D0@tm.ee Whole thread Raw
In response to	Possible major bug in PlPython (plus some other ideas) (Kevin Jacobs <jacobs@penguin.theopalgroup.com>)
Responses	Re: Possible major bug in PlPython (plus some other ideas)
List	pgsql-hackers

Tree view

Kevin Jacobs wrote:
> 
> > >   1) If Plpython is installed as a trusted language, and from what little I
> > >      can glean from the documentation, it should not have any filesystem access.
> > >      However, the default behavior of the restricted execution environment
> > >      being used allows read-only filesystem access.
> >
> > we have 'read-only filesystem access anyhow' :
> 
> Then I consider this a bug if a non-super-user can do this.

It's not that bad - only postgresql superuser can use copy to/from file
.

-------------
Hannu

pgsql-hackers by date:

From: Bradley McLean
Date: 09 November 2001, 17:12:29
Subject: Plpython crashing the backend in one easy step

From: Hannu Krosing
Date: 09 November 2001, 17:26:33
Subject: Re: Possible major bug in PlPython (plus some other ideas)

Re: Possible major bug in PlPython (plus some other ideas) - Mailing list pgsql-hackers

Previous

Next