Re: [HACKERS] [PATCHES] fork/exec patch

From: "Magnus Hagander" <mha(at)sollentuna(dot)net>
To: "Merlin Moncure" <merlin(dot)moncure(at)rcsonline(dot)com>, "Steve Tibbett" <stibbett(at)zim(dot)biz>
Cc: "pgsql-hackers-win32" <pgsql-hackers-win32(at)postgresql(dot)org>
Subject: Re: [HACKERS] [PATCHES] fork/exec patch
Date: 2003-12-16 15:43:46
Message-ID: 6BCB9D8A16AC4241919521715F4D8BCE171570@algol.sollentuna.se
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers-win32

> OK, you have a point. There is even one more thing that I thought
about in that services are
> restricted in message handling capabilities in NT unless you
explicitly disable that protection
> (basically a security fix for the scatter attack). So messages are
probably out, unless this
> restriction does not apply to 'child' processes which off the top of
my head I am not sure about.
> However scatter attack type problems do not really apply because the
postmaster would only listen
> for private messages (or public ones and implement the standard
behavior). IMO, the scatter
> problem was overhyped.

I haven't used message handlers in a long time, but can you use them at
all unless you are on the desktop? Meaning the Interact With Desktop
switch would be required, which in turn rules out any other user than
Local System. And that's the same as running as root on Unix, which is
something postgresql refuses.
Postgresql on windows shuold *definitly* support running with a low
privilege account.

> Also, storing the signal type in shared memory (as in the
> CONNX code) seems overkill because the signal ID (along with
> the pid) can be stored in the name of the event. Here is
> Microsoft's example (from the above
> link) on emulating SIGALRM with events:

The problem with this is that you eat up a lot of handles if you have a
lot of backends. When you haev a few, it's not an issue, but when you
start creating logs of backends, it might become noticeable.

> #define _WIN32_WINNT 0X0500
This means the code listed won't work on NT4. But looking at this
particular code, it doesn't appear to use anything Windows 2000+
specific. But it's worth watching out for if NT4 support is wanted.

Is there a decision on which platforms should be supported, other than
it's NT4+?

//Magnus

Browse pgsql-hackers-win32 by date

  From Date Subject
Next Message Magnus Hagander 2003-12-16 15:53:07 Re: [HACKERS] [PATCHES] fork/exec patch
Previous Message Merlin Moncure 2003-12-16 15:39:08 Re: [HACKERS] [PATCHES] fork/exec patch