Home > mailing lists

Support a`--with-copy-program` compile flag - Mailing list pgsql-hackers

From	Steve Chavez
Subject	Support a`--with-copy-program` compile flag
Date	November 12 21:07:27
Msg-id	CAGRrpza_WUY_jaN4P-xkN=TdqfxH+eJJazZAo5gg=kQoEaQnVw@mail.gmail.com Whole thread Raw
Responses	Re: Support a`--with-copy-program` compile flag Re: Support a`--with-copy-program` compile flag Re: Support a`--with-copy-program` compile flag
List	pgsql-hackers

Tree view

Hello hackers,

Postgres provides the `COPY .. TO/FROM PROGRAM` statement. This is dangerous from a security perspective because it allows users to escape from the SQL sandbox and gain shell access on the instance.

Now there's the `pg_execute_server_program` predefined role to restrict access to `COPY.. TO/FROM PROGRAM` but if somehow a pg user gains superuser privileges then the predefined role is of no use.

So I wonder if we could remove the possibility of shell access by providing a `--with-copy-program` compile flag.

Best regards,

Steve Chavez

pgsql-hackers by date:

From: Tom Lane
Date: 12 November, 21:02:03
Subject: Re: Update timezone to C99

From: Heikki Linnakangas
Date: 12 November, 21:23:04
Subject: Re: Support a`--with-copy-program` compile flag

Support a`--with-copy-program` compile flag - Mailing list pgsql-hackers

Previous

Next