Quick Links

Re: [patch] fix dblink security hole

From:	Joe Conway <mail(at)joeconway(dot)com>
To:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:	Marko Kreen <markokr(at)gmail(dot)com>, Postgres Hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: [patch] fix dblink security hole
Date:	2008-09-21 01:55:20
Message-ID:	48D5A988.5000409@joeconway.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Tom Lane wrote:
> I think there is an alternative solution, if we are only going to patch
> this in 8.4 and up: provide a new libpq conninfo-string option saying
> not to use .pgpass, and have dblink add that to the passed-in conninfo
> string instead of trying to check after the fact. Then we aren't
> changing dblink's API at all, only replacing a leaky security check
> with a better one.

Good point -- I'll look into that and post something tomorrow. How does
"requirepassword" sound for the option? It is consistent with
"requiressl" but a bit long and hard to read. Maybe "require_password"?

Joe

In response to

Re: [patch] fix dblink security hole at 2008-09-21 00:56:57 from Tom Lane

Responses

Re: [patch] fix dblink security hole at 2008-09-21 02:09:10 from Tom Lane

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Merlin Moncure	2008-09-21 02:04:14	Re: Foreign key constraint for array-field?
Previous Message	Tom Lane	2008-09-21 01:28:09	Re: Predictable order of SQL commands in pg_dump