From: | "A(dot)M(dot)" <agentm(at)themactionfaction(dot)com> |
---|---|
To: | psycopg(at)postgresql(dot)org |
Subject: | Re: Stuff for 2.4.1 |
Date: | 2011-03-28 15:00:51 |
Message-ID: | ACAB0FE5-04AF-4304-8B27-BB6BA419F8F2@themactionfaction.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | psycopg |
On Mar 28, 2011, at 3:11 AM, Federico Di Gregorio wrote:
>
> What Daniele did is fine:
>
> 1) There is no security problem, because the code only work in the
> database->user direction.
>
> 2) Allows communication with different combinations of backend/libpq
> versions without adding the overhead of extra quesries when
> establishing the connection (i.e., it just works and this is
> very important for the user).
>
> Also, while I am writing very few new code I am reviewing everything and
> I am confident to say that psycopg is much safe now than 2 years ago
> when I was the only developer.
Wouldn't it make more sense to simply bundle the latest version of libpq with psycopg2? As far as I can tell, there is no advantage to compiling against an older libpq- they are all backwards compatible.
Cheers,
M
From | Date | Subject | |
---|---|---|---|
Next Message | Federico Di Gregorio | 2011-03-28 15:53:32 | Re: Stuff for 2.4.1 |
Previous Message | Federico Di Gregorio | 2011-03-28 07:11:10 | Re: Stuff for 2.4.1 |