Home > mailing lists

Re: Directory/File Access Permissions for COPY and Generic File Access Functions - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: Directory/File Access Permissions for COPY and Generic File Access Functions
Date	October 29, 2014 19:04:00
Msg-id	CA+TgmoZo+3dOL5f6_jX_6rRhF8a59TkREV_sV8kh4D4r+8NO6g@mail.gmail.com Whole thread Raw
In response to	Re: Directory/File Access Permissions for COPY and Generic File Access Functions (Andres Freund <andres@2ndquadrant.com>)
Responses	Re: Directory/File Access Permissions for COPY and Generic File Access Functions
List	pgsql-hackers

Tree view

On Wed, Oct 29, 2014 at 12:00 PM, Andres Freund <andres@2ndquadrant.com> wrote:
> It's possible to do this securely by doing a fstat() and checking the
> link count.

Good point.

>> And it
>> still doesn't protect against the case where you hardlink to a file
>> and then the permissions on that file are later changed.
>
> Imo that's simply not a problem that we need to solve - it's much more
> general and independent.

I don't see how you can draw an arbitrary line there.  We either
guarantee that the logged-in user can't usurp the server's
permissions, or we don't.  Making it happen only sometimes in cases
we're prepared to dismiss is not real security.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Andres Freund
Date: 29 October 2014, 19:01:18
Subject: Re: Directory/File Access Permissions for COPY and Generic File Access Functions

From: Andres Freund
Date: 29 October 2014, 19:07:47
Subject: Re: Directory/File Access Permissions for COPY and Generic File Access Functions

Re: Directory/File Access Permissions for COPY and Generic File Access Functions - Mailing list pgsql-hackers

Previous

Next