| From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
|---|---|
| To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
| Cc: | Dave Page <dpage(at)vale-housing(dot)co(dot)uk>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Remote administration contrib module |
| Date: | 2006-04-10 21:49:39 |
| Message-ID: | 200604102149.k3ALndw10449@candle.pha.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Peter Eisentraut wrote:
> Bruce Momjian wrote:
> > I think the issue was that adding these fuctions adds a potential
> > security opening, so we didn't want it in core by default, but
> > /contrib seems logical because anyone who needs it can just add it.
>
> Well, if there are security issues, then this is a poor fix. A lot of
> people use pgAdmin, many of them less experienced with PostgreSQL, so
> before long all of these functions are going to be installed at many
> sites anyway. If there are _security_ issues, they need to be fixed
> before things go into contrib.
The logic is why add functionality by default that can be used as a
potential security hole if you are not using it.
> > This is similar to the fact we don't include plpgsql by default in
> > databases, for the same reason,
>
> I doubt that that is really the reason.
It actually is the reason I have heard.
--
Bruce Momjian http://candle.pha.pa.us
EnterpriseDB http://www.enterprisedb.com
+ If your life is a hard drive, Christ can be your backup. +
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2006-04-10 22:03:29 | Re: [GENERAL] PANIC: heap_update_redo: no block |
| Previous Message | Peter Eisentraut | 2006-04-10 21:42:59 | Re: Remote administration contrib module |