| From: | Fabien COELHO <coelho(at)cri(dot)ensmp(dot)fr> |
|---|---|
| To: | Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> |
| Cc: | Gilles Darold <gilles(dot)darold(at)dalibo(dot)com>, PostgreSQL Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: [HACKERS] proposal: schema variables |
| Date: | 2018-08-23 09:46:32 |
| Message-ID: | alpine.DEB.2.21.1808231123050.31897@lancre |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>> Security vs "good enough in some cases" looks bad to me.
>
> We don't find a agreement, because you are concentrated on transation,
> me on session. And we have different expectations.
I do not understand your point, as usual. I raise a factual issue about
security, and you do not answer how this can be solved with your proposal,
but appeal to argument of authority and declare your "strong opinion".
I do not see any intrinsic opposition between having session objects and
transactions. Nothing prevents a session object to be transactional beyond
your willingness that it should not be.
Now, I do expect all PostgreSQL features to be security-wise, whatever
their scope.
I do not think that security should be traded for "cheap & fast", esp as
the sole use case for a feature is a security pattern that cannot be
implemented securely with it. This appears to me as a huge contradiction,
hence my opposition against this feature as proposed.
The good news is that I'm a nobody: if a committer is happy with your
patch, it will get committed, you do not need my approval.
--
Fabien.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alexander Kukushkin | 2018-08-23 10:06:59 | Re: BUG #15346: Replica fails to start after the crash |
| Previous Message | Pavel Stehule | 2018-08-23 08:44:10 | Re: [HACKERS] proposal: schema variables |