| From: | "Merlin Moncure" <mmoncure(at)gmail(dot)com> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Cc: | pgsql-announce(at)postgresql(dot)org, peter_e(at)gmx(dot)net |
| Subject: | Re: Advisory on possibly insecure security definer functions |
| Date: | 2007-02-14 15:31:10 |
| Message-ID: | b42b73150702140731j536c449cn2e575de395910d1@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-announce pgsql-general |
On 2/13/07, Peter Eisentraut <peter_e(at)gmx(dot)net> wrote:
> The proper fix for this problem is to insert explicit SET search_path
> commands into each affected function to produce a known safe schema
> search path. Note that using the default search path, which includes a
> reference to the "$user" schema, is not safe when unqualified
> references are intended to be found in the "public" schema and "$user"
> schemas exist or can be created by other users. It is also not
> recommended to rely on rigorously schema-qualifying all function and
> operator invocations in function source texts, as such measures are
> likely to induce mistakes and will furthermore make the source code
> harder to read and maintain.
Could you clarify what functions are going to get an explicit 'set
search_path'? Will this change the behavior of any userland
functions?
merlin
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2007-02-14 16:28:26 | Re: Advisory on possibly insecure security definer functions |
| Previous Message | Administrator Az.pl | 2007-02-14 07:00:04 | [ADM #INO-38939-552]: [ANNOUNCE] Advisory on possibly insecure security definer functions |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Laura McCord | 2007-02-14 15:44:48 | Re: Having a problem with my stored procedure |
| Previous Message | Ted | 2007-02-14 15:17:36 | Re: Having a problem with my stored procedure |