| From: | Hubert Zhang <hzhang(at)pivotal(dot)io> |
|---|---|
| To: | pgsql-hackers(at)lists(dot)postgresql(dot)org |
| Subject: | Secured and customizable PLPython and PLR on Postgresql |
| Date: | 2018-06-11 06:31:58 |
| Message-ID: | CAB0yreme73F8btaGK_MwQvMk8hMXxk=W2shaKak4ytYp2DMNpQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Hi all,
As you know PLPython and PLR are untrusted language, which means only DBA
could create these UDFs(very inconvenient). Moreover it's also hard to
supply user specific Python/R env for different data scientists.
We are working on an open source project to make PLPython and PLR trusted
and customizable. The project is called PLContainer, which use Docker
Container as the sandbox to avoid malicious user breaking Postgresql
database or even the whole host machine.
Now there is a basic version which could support PLContainer on PG9.6
(Thanks krait007 and markwort for the contribution). We still have a lot of
issues to make it production ready and share with more peoples. [Github
umbrella project](https://github.com/greenplum-db/plcontainer/projects/1)
If you are interested in it, feel free to try it. Your suggestion and
contribution will be appreciated.
--
Thanks
Hubert Zhang
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Ashutosh Bapat | 2018-06-11 06:33:47 | Re: Performance regression with PostgreSQL 11 and partitioning |
| Previous Message | Laurenz Albe | 2018-06-11 06:28:23 | Re: SHOW ALL does not honor pg_read_all_settings membership |