| From: | ts <decoux(at)moulon(dot)inra(dot)fr> |
|---|---|
| To: | hannu(at)tm(dot)ee |
| Cc: | pgman(at)candle(dot)pha(dot)pa(dot)us, pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | Re: Trigger function languages |
| Date: | 2000-05-18 07:44:11 |
| Message-ID: | 200005180744.e4I7iAC05619@moulon.moulon.inra.fr |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>>>>> "H" == Hannu Krosing <hannu(at)tm(dot)ee> writes:
H> How safe is plruby ?
I'll say that ruby is more safe than perl.
Ruby define 4 security levels :
/* safe-level:
0 - strings from streams/environment/ARGV are tainted (default)
1 - no dangerous operation by tainted string
2 - process/file operations prohibited
3 - all genetated strings are tainted
4 - no global (non-tainted) variable modification/no direct output
*/
You have a more complete description at :
http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-talk/2689
plruby, by default, is compiled with $SAFE >= 4
Guy Decoux
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Hiroshi Inoue | 2000-05-18 07:49:44 | RE: question about index cost estimates |
| Previous Message | Tom Lane | 2000-05-18 07:40:41 | Re: AW: question about index cost estimates |