| From: | Greg Stark <stark(at)mit(dot)edu> |
|---|---|
| To: | Dave Page <dpage(at)pgadmin(dot)org> |
| Cc: | Josh Berkus <josh(at)agliodbs(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Switching to Homebrew as recommended Mac install? |
| Date: | 2012-04-04 03:12:18 |
| Message-ID: | CAM-w4HN0_oP=xeTk-YPUwsORwje5ePmFjXGPo7YE5jLdze-Qkg@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general pgsql-hackers |
On Wed, Apr 4, 2012 at 1:19 AM, Dave Page <dpage(at)pgadmin(dot)org> wrote:
> then, we're talking about making parts of the filesystem
> world-writeable so it doesn't even matter if the user is running as an
> admin for a trojan or some other nasty to attack the system.
The argument is that a trojan or other nasty doesn't *need* to be
admin to attack the system since it can just attack the user's account
since that's where all the interesting data is anyways.
But again, this is all beside the point. It's a judgement for Apple
and Microsoft and individual administrators to make. We can't really
start reconfiguring people's systems to use a different security model
than they expect just because they've installed a database software --
even if we think our security model makes more sense than the one
their used to.
--
greg
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Chris Travers | 2012-04-04 03:18:12 | Looking for RPMs for SuSE enterprise 11, PostgreSQL 9.1, Power architecture |
| Previous Message | Scott Marlowe | 2012-04-04 01:58:36 | Re: views, queries, and locks |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Greg Smith | 2012-04-04 03:35:24 | Re: performance-test farm |
| Previous Message | umi.tanuki | 2012-04-04 01:42:01 | BUG #6572: The example of SPI_execute is bogus |