Prevent query cancel packets from being replayed by an attacker (From TODO) - Mailing list pgsql-hackers

From Sebastian Cabot
Subject Prevent query cancel packets from being replayed by an attacker (From TODO)
Date
Msg-id CAEmynK-kpSjdb4Jo5W-qqX5uTL7ZjGjznGs8sO3majk0R6mJ+Q@mail.gmail.com
Whole thread Raw
Responses Re: Prevent query cancel packets from being replayed by an attacker (From TODO)
List pgsql-hackers
Hello,

My name is Sebastian and I am new to this list and community.
I have been following PostgreSQL for several years and I love the work done on it, but I never had the chance (time) to join.

I was going through the TODO list and studied the code and the thread discussing the optional fixes  and I think I have a solution to this one which has the following advantages:
1. No change to the protocol is needed
2. Can be implemented in a both forward and backward compatible way
3. Does not require any shared memory trickery
4. Is immune to brute force attacks  (probably)

If this is still something we wish to fix I will be happy to share the details (and implement it) - I don't wish to burden you with the details if there is no real interest in solving this.

Cheers
Sebastian

pgsql-hackers by date:

Previous
From: Markus Wanner
Date:
Subject: Re: [PATCH] add concurrent_abort callback for output plugin
Next
From: Denis Hirn
Date:
Subject: Re: [PATCH] Allow multiple recursive self-references