From: | Scott Bailey <artacus(at)comcast(dot)net> |
---|---|
To: | |
Cc: | pgsql-general(at)postgresql(dot)org, pgsql-novice <pgsql-novice(at)postgresql(dot)org> |
Subject: | Re: What is unsecure postgres languages? How to disable them? |
Date: | 2010-02-22 18:07:56 |
Message-ID: | 4B82C7FC.1010800@comcast.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-general pgsql-novice |
dipti shah wrote:
> Sorry Albe for confusion. Yes, I meant untrusted languages like C,
> PL/PerlU, PL/PythonU etc...
>
> Thanks a lot you and Tino for nice reply. Could you guys tell me how
> could I verify whether those languages are installed on my PostGreSQL
> server?
>
> Thanks for being there,
> Dipti
>
> On Mon, Feb 22, 2010 at 8:14 PM, Albe Laurenz <laurenz(dot)albe(at)wien(dot)gv(dot)at
> <mailto:laurenz(dot)albe(at)wien(dot)gv(dot)at>> wrote:
>
> dipti shah wrote:
> > Could anyone please tell me what is unsecure postgres
> > languages(like C, pgperl, pgpython??). How to disable them or
> > restrict them only for super user?
>
> I have never heard of "unsecure" languages - what exactly do you mean?
>
> If you mean "untrusted" languages like PL/PerlU, they are not
> installed by default *and* they are restricted to superusers.
>
> You cannot disable C functions, but to define them you must also
> have superuser privileges.
>
> Yours,
> Laurenz Albe
>
As mentioned you can't remove c/internal and for the others, they are
not installed unless you went out of your way to install them.
SELECT *
FROM pg_catalog.pg_language
WHERE lanpltrusted = false
Scott
From | Date | Subject | |
---|---|---|---|
Next Message | Yang Zhang | 2010-02-22 18:10:30 | Sorting performance vs. MySQL |
Previous Message | Jignesh Shah | 2010-02-22 17:52:42 | Re: Questions regarding SET option. |
From | Date | Subject | |
---|---|---|---|
Next Message | Tom Lane | 2010-02-22 20:34:59 | Re: SET Role doesn't work from Security Definer Function... |
Previous Message | dipti shah | 2010-02-22 17:47:26 | SET Role doesn't work from Security Definer Function... |