Home > mailing lists

Re: Add on_trusted_init and on_untrusted_init to plperl [PATCH] - Mailing list pgsql-hackers

From	Andrew Dunstan
Subject	Re: Add on_trusted_init and on_untrusted_init to plperl [PATCH]
Date	January 28, 2010 16:03:01
Msg-id	4B61C339.4060607@dunslane.net Whole thread Raw
In response to	Re: Add on_trusted_init and on_untrusted_init to plperl [PATCH] (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: Add on_trusted_init and on_untrusted_init to plperl [PATCH] (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view


Tom Lane wrote:
>
> Isn't it a security hole if on_trusted_init is USERSET?  That means
> an unprivileged user can determine what will happen in plperlu.
> SUSET would be saner.
>   

ITYM on_untrusted_init.

cheers

andrew

pgsql-hackers by date:

From: Pavel Stehule
Date: 28 January 2010, 15:59:45
Subject: Re: quoting psql varible as identifier

From: Hitoshi Harada
Date: 28 January 2010, 16:08:54
Subject: Re: Review: listagg aggregate

Re: Add on_trusted_init and on_untrusted_init to plperl [PATCH] - Mailing list pgsql-hackers

Previous

Next