On Sat, May 22, 2010 at 4:53 PM, Cédric Villemain
<cedric.villemain.debian@gmail.com> wrote:
> 2010/5/21 Jan Wieck <JanWieck@yahoo.com>:
>> The original idea was that a trusted language does not allow an unprivileged
>> user to gain access to any object or data, he does not have access to
>> without that language.
>>
>> This does not include data transformation functionality, like string
>> processing or the like. As long as the user had legitimate access to the
>> input datum, then every derived form thereof is OK.
>
> I find the current doc enough, add this prose from Jan as a comment
> might help people perhaps.
Yeah, Jan's description is very clear and to the point.
--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise Postgres Company
