Quick Links

Re: Is postgres_fdw "safe"?

From:	Adrian Klaver <adrian(dot)klaver(at)aklaver(dot)com>
To:	Marcin Borkowski <mbork(at)mbork(dot)pl>, pgsql-general(at)lists(dot)postgresql(dot)org
Subject:	Re: Is postgres_fdw "safe"?
Date:	2023-10-20 14:34:14
Message-ID:	7f49f653-1708-4508-b266-47081b829155@aklaver.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

On 10/20/23 01:29, Marcin Borkowski wrote:
> Hello,
>
> I noticed that the docs for postgres_fdw lack the clause about it being
> "trusted". Does that mean that `create extension postgres_fdw` poses
> any known security risks? If so, what should I do to minimize them?

It allows connections to a database, so the same risks as any other
client that does the same thing.

>
> TIA,
>

--
Adrian Klaver
adrian(dot)klaver(at)aklaver(dot)com

In response to

Is postgres_fdw "safe"? at 2023-10-20 08:29:25 from Marcin Borkowski

Browse pgsql-general by date

	From	Date	Subject
Next Message	Tom Lane	2023-10-20 14:40:43	Re: PostgreSQL C++ Interface version 14.9 using static library instead of shared library
Previous Message	Adrian Klaver	2023-10-20 14:18:33	Re: pgagent download link missing