| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | "Thomas Mueller" <thomas(dot)tom(dot)mueller(at)gmail(dot)com> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Protection from SQL injection |
| Date: | 2008-05-01 17:25:07 |
| Message-ID: | 16340.1209662707@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
"Thomas Mueller" <thomas(dot)tom(dot)mueller(at)gmail(dot)com> writes:
>> 1. Inexpensive to implement
> Disabling literals wouldn't be much harder to implement I believe, but
> I don't know the PostgreSQL internals.
You're ignoring the client-side costs of repairing broken applications.
(If it only broke applications that were in fact insecure, that would be
one thing, but having to change code that there is nothing wrong with
is not something that people will accept easily.)
> Disabling literals is still the only way to actually protect from SQL
> injection.
If it were actually a complete defense then maybe the costs would be
justifiable; but it isn't, as per previous discussion.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andrew Sullivan | 2008-05-01 19:17:37 | Re: Protection from SQL injection |
| Previous Message | Andrew Dunstan | 2008-05-01 17:09:38 | Re: Protection from SQL injection |