Home > mailing lists

Re: Allowing to create LEAKPROOF functions to non-superuser - Mailing list pgsql-hackers

From	Andrey Borodin
Subject	Re: Allowing to create LEAKPROOF functions to non-superuser
Date	April 12, 2021 23:59:53
Msg-id	47D69E15-ABDF-47E9-9E8A-AA3143E055DF@yandex-team.ru Whole thread Raw
In response to	Re: Allowing to create LEAKPROOF functions to non-superuser (Tomas Vondra <tomas.vondra@enterprisedb.com>)
List	pgsql-hackers

Tree view

Thanks, Tomas!

> 12 апр. 2021 г., в 23:42, Tomas Vondra <tomas.vondra@enterprisedb.com> написал(а):
>
> I guess for the cloud services it's not an issue - they're mostly
> concerned about manageability and restricting access to the OS.
In fact, we would happily give a client access to an OS too. It's a client's VM after all and all software is open
source.But it opens a way to attack control plane. Which in turn opens a way for clients to attack each other. And we
reallydo not want it. 

Thanks!

Best regards, Andrey Borodin.

pgsql-hackers by date:

From: Tom Lane
Date: 12 April 2021, 23:59:19
Subject: Curious test case added by collation version tracking patch

From: Andres Freund
Date: 13 April 2021, 00:01:47
Subject: Re: Allowing to create LEAKPROOF functions to non-superuser

Re: Allowing to create LEAKPROOF functions to non-superuser - Mailing list pgsql-hackers

Previous

Next