Home > mailing lists

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

From	Josh Berkus
Subject	Re: Specification for Trusted PLs?
Date	May 21, 2010 16:13:01
Msg-id	4BF6B0FA.1090602@agliodbs.com Whole thread Raw
In response to	Re: Specification for Trusted PLs? (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

On 05/21/2010 11:57 AM, Magnus Hagander wrote:
> On Fri, May 21, 2010 at 11:55 AM, Josh Berkus<josh@agliodbs.com>  wrote:
>> So, here's a working definition:
>>
>> 1) cannot directly read or write files on the server.
>> 2) cannot bind network ports
>
> To make that more covering, don't yu really need something like
> "cannot communicate with outside processes"?

So, no interprocess communication except through the SPI interface?  How 
do module GUCs and things like %_SHARED fit into this?

--                                   -- Josh Berkus                                     PostgreSQL Experts Inc.
                           http://www.pgexperts.com

pgsql-hackers by date:

From: Magnus Hagander
Date: 21 May 2010, 15:57:42
Subject: Re: Specification for Trusted PLs?

From: David Fetter
Date: 21 May 2010, 16:22:30
Subject: Re: Specification for Trusted PLs?

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

Previous

Next