Re: leaky views, yet again

From: "Kevin Grittner" <Kevin(dot)Grittner(at)wicourts(dot)gov>
To: "KaiGai Kohei" <kaigai(at)kaigai(dot)gr(dot)jp>, "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: "KaiGai Kohei" <kaigai(at)ak(dot)jp(dot)nec(dot)com>, "Heikki Linnakangas" <heikki(dot)linnakangas(at)enterprisedb(dot)com>, "Itagaki Takahiro" <itagaki(dot)takahiro(at)gmail(dot)com>, "Robert Haas" <robertmhaas(at)gmail(dot)com>, <pgsql-hackers(at)postgresql(dot)org>
Subject: Re: leaky views, yet again
Date: 2010-10-13 15:25:40
Message-ID: 4CB58924020000250003690D@gw.wicourts.gov
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp> wrote:

> Previous security researcher pointed out security is trading-off,
> not all-or-nothing. If we can plug most part of the threat with
> reasonable performance degrading, it is worthwhile to fix up.

I had the pleasure of hearing Admiral Grace Hopper[1] speak at an
ACM luncheon once. When she discussed security, she asserted that
there was no such thing as security which could not be breached.
The goal of security efforts should not be to make it perfect,
because you can't; any time you convince yourself you have that you
are simply fooling yourself and missing the vulnerabilities. In her
view the goal was to make the costs of breaching security higher to
the perpetrator than the benefits. Each obstacle in their way helps
tip the scales in your favor.

-Kevin

http://en.wikipedia.org/wiki/Grace_Hopper

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Tom Lane 2010-10-13 15:42:28 Re: levenshtein_less_equal (was: multibyte charater set in levenshtein function)
Previous Message Tom Lane 2010-10-13 15:24:47 Re: SQL command to edit postgresql.conf, with comments