Home > mailing lists

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

From	Cédric Villemain
Subject	Re: Specification for Trusted PLs?
Date	May 22, 2010 20:54:20
Msg-id	AANLkTinpGyNg0cwbzmlgnCKMjekOEN4N6NLJpy0Av2wQ@mail.gmail.com Whole thread Raw
In response to	Re: Specification for Trusted PLs? (Jan Wieck <JanWieck@Yahoo.com>)
Responses	Re: Specification for Trusted PLs?
List	pgsql-hackers

Tree view

2010/5/21 Jan Wieck <JanWieck@yahoo.com>:
> The original idea was that a trusted language does not allow an unprivileged
> user to gain access to any object or data, he does not have access to
> without that language.
>
> This does not include data transformation functionality, like string
> processing or the like. As long as the user had legitimate access to the
> input datum, then every derived form thereof is OK.

I find the current doc enough, add this prose from Jan as a comment
might help people perhaps.


>
>
> Jan
>
> --
> Anyone who trades liberty for security deserves neither
> liberty nor security. -- Benjamin Franklin
>
> --
> Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgsql-hackers
>



--
Cédric Villemain

pgsql-hackers by date:

From: Robert Haas
Date: 22 May 2010, 18:42:36
Subject: Re: "unexpected" query behaviour after i change parser code

From: Tom Lane
Date: 23 May 2010, 01:17:20
Subject: Re: Idea for getting rid of VACUUM FREEZE on cold pages

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

Previous

Next