From: | Lamar Owen <lamar(dot)owen(at)wgcr(dot)org> |
---|---|
To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
Cc: | Neil Conway <neilc(at)samurai(dot)com>, Justin Clift <justin(at)postgresql(dot)org>, PostgreSQL Hackers Mailing List <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: Can we revisit the thought of PostgreSQL 7.2.4? |
Date: | 2003-01-26 02:32:21 |
Message-ID: | 200301252132.21913.lamar.owen@wgcr.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
On Saturday 25 January 2003 21:06, Bruce Momjian wrote:
> Lamar Owen wrote:
> > On Saturday 25 January 2003 20:36, Bruce Momjian wrote:
> > > improve the capabilities of the database. For security issues, if we
> > > already have ten open doors in a house, does it help to lock two of
> > > them when the other eight are still open?
> > Yes. It depends upon which street the door faces. See the MS SQL Server
> > Sapphire worm for reference.
> Right. All our open doors are on the inside, so we aren't too bad.
SQL injection exploits for various frontends are also an issue.
I just have an issue with being able to crash the server with an SQL command.
We'll see how it pans out, I guess.
Red Hat certainly thought it was worth spending some time on; reference their
back porting of the fixes to versions as old as 6.5.3.
--
Lamar Owen
WGCR Internet Radio
1 Peter 4:11
From | Date | Subject | |
---|---|---|---|
Next Message | Bruce Momjian | 2003-01-26 02:55:25 | Re: Can we revisit the thought of PostgreSQL 7.2.4? |
Previous Message | Bruce Momjian | 2003-01-26 02:16:51 | Re: default to WITHOUT OIDS? Possible related problem |