Quick Links

Re: Bugtraq: Having Fun With PostgreSQL

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Andrew Sullivan <ajs(at)crankycanuck(dot)ca>
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Bugtraq: Having Fun With PostgreSQL
Date:	2007-06-25 17:31:52
Message-ID:	1378.1182792712@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Andrew Sullivan <ajs(at)crankycanuck(dot)ca> writes:
> To achieve the "secure by default" feature that you want (and I like
> the scare-quotes -- I agree with those that think this adds no real
> security, but I think you're right to worry about the perception
> angle in this case), why not have a ./configure option that sets the
> default trust level for the build?

Why is that better than the initdb-time option we already have?
Locking down options earlier rather than later is usually not a win.

regards, tom lane

In response to

Re: Bugtraq: Having Fun With PostgreSQL at 2007-06-25 17:02:13 from Andrew Sullivan

Responses

Re: Bugtraq: Having Fun With PostgreSQL at 2007-06-25 19:54:45 from Andrew Sullivan

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Fabien COELHO	2007-06-25 17:56:56	Re: Frustrating issue with PGXS
Previous Message	Tom Lane	2007-06-25 17:29:53	Re: Blowback from text conversion changes