Home > mailing lists

Re: Safe security - Mailing list pgsql-hackers

From	Andrew Dunstan
Subject	Re: Safe security
Date	March 3, 2010 23:04:42
Msg-id	4B8EF874.8010006@dunslane.net Whole thread Raw
In response to	Re: Safe security ("Joshua D. Drake" <jd@commandprompt.com>)
Responses	Re: Safe security
List	pgsql-hackers

Tree view

Joshua D. Drake wrote:
> On Wed, 2010-03-03 at 11:33 -0500, Andrew Dunstan wrote:
>
>   
>>>   
>>>       
>> Well, we could put in similar weasel words I guess. But after all, 
>> Safe's very purpose is to provide a restricted execution environment, no?
>>     
>
> We already do, in our license.
>
>
>   

True. I think the weasel formula I prefer here is a bit different. It 
might be reasonable to say something along the lines of:
   To the extent it is prevented by the Perl Safe module, there is no   way provided to access internals of the
databaseserver process or   to gain OS-level access with the permissions of the server process,   as a C function can
do.

cheers

andrew

pgsql-hackers by date:

From: Bruce Momjian
Date: 03 March 2010, 22:52:33
Subject: Re: Custom GUCs still a bit broken

From: KaiGai Kohei
Date: 03 March 2010, 23:11:21
Subject: Re: renameatt() can rename attribute of index, sequence, ...

Re: Safe security - Mailing list pgsql-hackers

Previous

Next