Quick Links

Re: [patch] fix dblink security hole

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Joe Conway <mail(at)joeconway(dot)com>
Cc:	Marko Kreen <markokr(at)gmail(dot)com>, Postgres Hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: [patch] fix dblink security hole
Date:	2008-09-22 14:06:09
Message-ID:	14768.1222092369@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Joe Conway <mail(at)joeconway(dot)com> writes:
> Tom Lane wrote:
>> No, the test to see if the server actually *asked* for the password is
>> the important part at that end.

> Oh, I see that now. So yes, as far as I can tell, password_from_string
> is not used for anything anymore and should be removed.

Okay. I just committed the patch without that change, but I'll go back
and add it.

regards, tom lane

In response to

Re: [patch] fix dblink security hole at 2008-09-22 13:52:50 from Joe Conway

Responses

Re: [patch] fix dblink security hole at 2008-09-22 20:58:19 from Tommy Gildseth

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Heikki Linnakangas	2008-09-22 14:13:47	Re: WIP patch: Collation support
Previous Message	Tom Lane	2008-09-22 14:03:50	Re: WIP patch: Collation support