Home > mailing lists

Re: [HACKERS] search path security issue? - Mailing list pgsql-hackers

From	Joe Conway
Subject	Re: [HACKERS] search path security issue?
Date	October 9, 2017 00:34:36
Msg-id	f3ee3b67-82ee-9a67-23be-c6ba199a80fd@joeconway.com Whole thread Raw
In response to	Re: [HACKERS] search path security issue? (Magnus Hagander <magnus@hagander.net>)
Responses	Re: [HACKERS] search path security issue?
List	pgsql-hackers

Tree view

On 10/06/2017 12:52 AM, Magnus Hagander wrote:
> It would be a nice feature to have in general, like a "basic guc
> permissions" thing. At least allowing a superuser to prevent exactly
> this. You could argue the same thing for example for memory parameters
> and such. We have no permissions at all when it comes to userset gucs
> today -- and of course, if something should be added about this, it
> should be done in a way that works for all the userset variables, not
> just search_path. 

+1

I have wished for exactly that more than once before.

Joe

--
Crunchy Data - http://crunchydata.com
PostgreSQL Support for Secure Enterprises
Consulting, Training, & Open Source Development

pgsql-hackers by date:

From: Peter Geoghegan
Date: 08 October 2017, 23:29:06
Subject: Re: [HACKERS] [COMMITTERS] pgsql: Fix freezing of a dead HOT-updated tuple

From: Tom Lane
Date: 09 October 2017, 03:11:44
Subject: Re: [HACKERS] Discussion on missing optimizations

Re: [HACKERS] search path security issue? - Mailing list pgsql-hackers

Previous

Next