Quick Links

Re: 7.4 changes

From:	Andrew Dunstan <andrew(at)dunslane(dot)net>
To:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: 7.4 changes
Date:	2004-10-18 16:45:34
Message-ID:	4173F32E.2030109@dunslane.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Tom Lane wrote:

>Andrew Dunstan <andrew(at)dunslane(dot)net> writes:
>
>
>>Do we want to backport tighter security for plperl? In particular,
>>insisting on Safe.pm >= 2.09 and removing the :base_io set of ops?
>>
>>
>
>I'd vote not: 7.4.5 => 7.4.6 is not an update that people would expect
>to break their plperl code ...
>
>
>
>

*shrug* OK. Then plperl should probably not be regarded as being as
"trusted" as we would like. Note that old versions of Safe.pm have been
the subject of security advisories such as this one
http://www.securityfocus.com/bid/6111/info/ for some time.

cheers

andrew

In response to

Re: 7.4 changes at 2004-10-17 17:52:52 from Tom Lane

Responses

Re: 7.4 changes at 2004-10-19 07:00:58 from Neil Conway

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Bruce Momjian	2004-10-18 16:51:10	Re: [PATCHES] Open Items
Previous Message	Mark Wong	2004-10-18 16:27:55	Re: spinlocks: generalizing "non-locking test"