| From: | David Fetter <david(at)fetter(dot)org> |
|---|---|
| To: | Thomas Hallgren <thhal(at)mailblocks(dot)com> |
| Cc: | "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Interpretation of TRUSTED |
| Date: | 2005-02-08 22:39:00 |
| Message-ID: | 20050208223900.GG14451@fetter.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Tue, Feb 08, 2005 at 11:12:07PM +0100, Thomas Hallgren wrote:
> Hi,
> A TRUSTED language specifies that ordinary users can use the
> language. It also implies that access to the file system should be
> prevented. In essence, ordinary users can never access the
> filesystem.
>
> Is it OK to design a trusted language so that it allows access to
> the filesystem provided that the session user is a super-user?
I believe that that is what UNTRUSTED languages are for. Only the
super-user may create functions in them, although there is no inherent
restriction on other users' calling those functions.
Cheers,
D
--
David Fetter david(at)fetter(dot)org http://fetter.org/
phone: +1 510 893 6100 mobile: +1 415 235 3778
Remember to vote!
| From | Date | Subject | |
|---|---|---|---|
| Next Message | pgsql | 2005-02-08 22:43:30 | Re: Query optimizer 8.0.1 (and 8.0) |
| Previous Message | Josh Berkus | 2005-02-08 22:18:37 | Re: Query optimizer 8.0.1 (and 8.0) |