Home > mailing lists

Re: advisory locks and permissions - Mailing list pgsql-hackers

From	Joshua D. Drake
Subject	Re: advisory locks and permissions
Date	September 22, 2006 16:03:05
Msg-id	45140872.8060109@commandprompt.com Whole thread Raw
In response to	Re: advisory locks and permissions ("Merlin Moncure" <mmoncure@gmail.com>)
List	pgsql-hackers

Tree view

> there are plenty of other potentially nasty things (like
> generate_series and the ! operator).  why are advisory_locks handled
> specially?   the way it stands right now is a user with command access
> can DoS a server after five minutes of research on the web.

You don't even have to do any research, just fire off ab.

Using a DOS to attack *any* database server via the web is a 3 second 
command.

Joshua D. Drake



-- 
   === The PostgreSQL Company: Command Prompt, Inc. ===
Sales/Support: +1.503.667.4564 || 24x7/Emergency: +1.800.492.2240   Providing the most comprehensive  PostgreSQL
solutionssince 1997             http://www.commandprompt.com/

pgsql-hackers by date:

From: Tom Lane
Date: 22 September 2006, 15:43:02
Subject: Re: advisory locks and permissions

From: AgentM
Date: 22 September 2006, 16:04:05
Subject: Re: advisory locks and permissions

Re: advisory locks and permissions - Mailing list pgsql-hackers

Previous

Next