From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | Lamar Owen <lamar(dot)owen(at)wgcr(dot)org> |
Cc: | Neil Conway <neilc(at)samurai(dot)com>, Justin Clift <justin(at)postgresql(dot)org>, PostgreSQL Hackers Mailing List <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: Can we revisit the thought of PostgreSQL 7.2.4? |
Date: | 2003-01-26 02:55:25 |
Message-ID: | 200301260255.h0Q2tPn27608@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
Lamar Owen wrote:
> On Saturday 25 January 2003 21:06, Bruce Momjian wrote:
> > Lamar Owen wrote:
> > > On Saturday 25 January 2003 20:36, Bruce Momjian wrote:
> > > > improve the capabilities of the database. For security issues, if we
> > > > already have ten open doors in a house, does it help to lock two of
> > > > them when the other eight are still open?
>
> > > Yes. It depends upon which street the door faces. See the MS SQL Server
> > > Sapphire worm for reference.
>
> > Right. All our open doors are on the inside, so we aren't too bad.
>
> SQL injection exploits for various frontends are also an issue.
>
> I just have an issue with being able to crash the server with an SQL command.
> We'll see how it pans out, I guess.
>
> Red Hat certainly thought it was worth spending some time on; reference their
> back porting of the fixes to versions as old as 6.5.3.
If we can get them all, it is a big win. If we can't, I don't think it
is a win.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073
From | Date | Subject | |
---|---|---|---|
Next Message | Bruce Momjian | 2003-01-26 03:07:41 | Re: Win32 port patches submitted |
Previous Message | Lamar Owen | 2003-01-26 02:32:21 | Re: Can we revisit the thought of PostgreSQL 7.2.4? |