Quick Links

Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Guido van Rossum <guido(at)python(dot)org>
Cc:	Sean Reifschneider <jafo(at)tummy(dot)com>, pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+
Date:	2003-05-26 06:46:36
Message-ID:	26025.1053931596@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Guido van Rossum <guido(at)python(dot)org> writes:
> I'm not saying I'm not sorry about this state of affairs. But I
> prefer to be upfront and say "there is currently no secure restricted
> execution mode" rather than pretend everything is cool and let bad
> guys hack into your system via the rexec holes.

Fair enough (and thanks for the prompt, authoritative answer!)

Looks like we either change plpython to untrusted status or remove it
entirely :-(. Sean, do you have time to prepare a patch for the former?

regards, tom lane

In response to

Re: Expect problems with PL/Python and Python version 2.2.3+ at 2003-05-26 06:46:20 from Guido van Rossum

Responses

Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+ at 2003-05-26 09:03:49 from Sean Reifschneider
Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+ at 2003-05-28 02:47:40 from Tom Lane

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Sean Reifschneider	2003-05-26 09:03:49	Re: Expect problems with PL/Python and Python version 2.2.3+ & 2.3+
Previous Message	Guido van Rossum	2003-05-26 06:46:20	Re: Expect problems with PL/Python and Python version 2.2.3+