| From: | "Roberts, Jon" <Jon(dot)Roberts(at)asurion(dot)com> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: to_char incompatibility |
| Date: | 2008-01-11 04:01:56 |
| Message-ID: | 1A6E6D554222284AB25ABE3229A927627153FB@nrtexcus702.int.asurion.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>
> Jon,
>
> > I always put security definer as I really think that should be the
> > default behavior. Anyway, your function should run faster.
>
> That's not a real good idea. A security definer function is like an SUID
> shell script; only to be used with great care.
>
You'll have to explain to Oracle and their customers that Oracle's security
model is not a great idea then.
<soapbox>
Executing a function should never require privileges on the underlying
objects referenced in it. The function should always run with the rights of
the owner of the function, not the user executing it.
</soapbox>
Jon
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Kris Jurka | 2008-01-11 04:19:21 | Re: Pl/Java broken since Postgresql 8.3-rc1 |
| Previous Message | Gavin Sherry | 2008-01-11 01:28:53 | Re: Dynamic Partitioning using Segment Visibility Maps |