| From: | Lamar Owen <lamar(dot)owen(at)wgcr(dot)org> |
|---|---|
| To: | Vince Vielhaber <vev(at)michvhf(dot)com>, "Marc G(dot) Fournier" <scrappy(at)hub(dot)org> |
| Cc: | Neil Conway <neilc(at)samurai(dot)com>, Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: [GENERAL] PostgreSQL 7.2.2: Security Release |
| Date: | 2002-08-24 17:53:22 |
| Message-ID: | 200208241353.22170.lamar.owen@wgcr.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-announce pgsql-general pgsql-hackers |
On Saturday 24 August 2002 10:51 am, Vince Vielhaber wrote:
> And what are the odds your application is going to bomb due to a buffer
> overflow before it even gets to the database. I can see maybe with php,
> but a web form should always be length limited.
IIRC, web forms are limited to 32k in an input field of any kind. TEXTAREA
is, I believe, the limit.
There are other limits -- but a web browser may not be the source of the POST
formdata.
--
Lamar Owen
WGCR Internet Radio
1 Peter 4:11
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Marc G. Fournier | 2002-08-24 19:29:50 | Re: [GENERAL] PostgreSQL 7.2.2: Security Release |
| Previous Message | Vince Vielhaber | 2002-08-24 14:51:30 | Re: [GENERAL] PostgreSQL 7.2.2: Security Release |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | pgsql-gen Newsgroup (@Basebeans.com) | 2002-08-24 18:25:21 | Cron <pgsql-gen@netsql> /var/news2mail/postgresql_n2m |
| Previous Message | Alvaro Herrera | 2002-08-24 16:34:44 | Re: CREATE INDEX .. ON table1 (field1 asc, field2 desc) |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Marc G. Fournier | 2002-08-24 19:29:50 | Re: [GENERAL] PostgreSQL 7.2.2: Security Release |
| Previous Message | Bruno Wolff III | 2002-08-24 15:34:22 | Are "text" strings 0 terminated internally? |