Home > mailing lists

Re: exposing pg_controldata and pg_config as functions - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: exposing pg_controldata and pg_config as functions
Date	January 19, 2016 20:24:15
Msg-id	CA+TgmoZ7sLfij2z+66wDKWNcMt41P0NWz0WtaYqkMD5ON7E8Tw@mail.gmail.com Whole thread Raw
In response to	Re: exposing pg_controldata and pg_config as functions (Michael Paquier <michael.paquier@gmail.com>)
List	pgsql-hackers

Tree view

On Mon, Jan 18, 2016 at 7:42 PM, Michael Paquier
<michael.paquier@gmail.com> wrote:
>> Yeah, I really don't see anything in the pg_controldata output that
>> looks sensitive.  The WAL locations are the closest of anything,
>> AFAICS.
>
> The system identifier perhaps? I honestly don't have on top of my head
> a way to exploit this information but leaking that at SQL level seems
> sensible: that's a unique identifier of a Postgres instance used when
> setting up a cluster after all.

I think you are confusing useful information with security-sensitive
information.  The system identifier may be useful, but if you can't
use it to compromise something, it's not security-sensitive.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Robert Haas
Date: 19 January 2016, 20:18:57
Subject: Re: [Proposal] Table partition + join pushdown

From: Joe Conway
Date: 19 January 2016, 20:32:46
Subject: Re: exposing pg_controldata and pg_config as functions

Re: exposing pg_controldata and pg_config as functions - Mailing list pgsql-hackers

Previous

Next