Quick Links

Re: [HACKERS] TODO list updated

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
Cc:	Peter Eisentraut <peter_e(at)gmx(dot)net>, The Hermit Hacker <scrappy(at)hub(dot)org>, PostgreSQL-development <pgsql-hackers(at)postgreSQL(dot)org>
Subject:	Re: [HACKERS] TODO list updated
Date:	2000-01-13 16:47:56
Message-ID:	15387.947782076@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:
>> You can't securely do
>> echo $PASSWORD | backend
>> or
>> echo $PASSWORD > allegedly-secure-temp-file

> This is secure. echo is a shell builtin, and does not invoke a separate
> process with arguments.

echo is a builtin in ksh and derivatives, but I don't think it's safe
to assume it is a builtin everywhere...

regards, tom lane

In response to

Re: [HACKERS] TODO list updated at 2000-01-13 15:57:33 from Bruce Momjian

Responses

Re: [HACKERS] TODO list updated at 2000-01-13 17:18:11 from The Hermit Hacker
Re: [HACKERS] TODO list updated at 2000-01-13 17:22:23 from Bruce Momjian

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Karl DeBisschop	2000-01-13 16:58:26	Re: [HACKERS] TODO list updated
Previous Message	Adriaan Joubert	2000-01-13 16:42:31	Re: AW: [HACKERS] Re: Regress tests reveal serious psql bug