Re: Wrong security context for deferred triggers?

Поиск
Список
Период
Сортировка
От Tomas Vondra
Тема Re: Wrong security context for deferred triggers?
Дата
Msg-id dede297a-3d24-7029-dfd9-06aeef8b9766@enterprisedb.com
обсуждение исходный текст
Ответ на Wrong security context for deferred triggers?  (Laurenz Albe <laurenz.albe@cybertec.at>)
Ответы Re: Wrong security context for deferred triggers?  (Laurenz Albe <laurenz.albe@cybertec.at>)
Re: Wrong security context for deferred triggers?  (Laurenz Albe <laurenz.albe@cybertec.at>)
Список pgsql-hackers
Дерево обсуждения 
On 11/6/23 14:23, Laurenz Albe wrote:
> ...
> 
> This behavior looks buggy to me.  What do you think?
> I cannot imagine that it is a security problem, though.
> 

How could code getting executed under the wrong role not be a security
issue? Also, does this affect just the role, or are there some other
settings that may unexpectedly change (e.g. search_path)?


regards

-- 
Tomas Vondra
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Isaac Morland
Дата:
Сообщение: Re: Wrong security context for deferred triggers?
Следующее
От: Stephen Frost
Дата:
Сообщение: Re: Add the ability to limit the amount of memory that can be allocated to backends.