projects / users / simon / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2135d1e) | patch
Restrict non-superusers to password authenticated connections
authorJoe Conway <mail@joeconway.com>
Sun, 8 Jul 2007 17:12:38 +0000 (17:12 +0000)
committerJoe Conway <mail@joeconway.com>
Sun, 8 Jul 2007 17:12:38 +0000 (17:12 +0000)
commitb672e46691c24c838d8f3b9cd7f7988ef89e1c16
treee982370c842faa4ac14a9a0f3d719f055312059ftree
parent2135d1ed7c94d6b786f78e935f88b6f5fc7b993bcommit | diff
Restrict non-superusers to password authenticated connections
to prevent possible escalation of privilege. Provide new SECURITY
DEFINER functions with old behavior, but initially REVOKE ALL
from public for these functions. Per list discussion and design
proposed by Tom Lane. A different approach will be used for
back-branches, committed separately.
contrib/dblink/dblink.c diff | blob | blame | history
contrib/dblink/dblink.sql.in diff | blob | blame | history
contrib/dblink/doc/connection diff | blob | blame | history
Simon's dev repository