I`m sorry list.
I had one mistake.
Thanks for everyone.
Thiago
2007/7/23, Tom Lane <[EMAIL PROTECTED]>:
"Thiago Maluf" <[EMAIL PROTECTED]> writes:
> I have one database server with postgresql 8.1 and I
discovered yesterday
> one security problem.
> When I access my server with thought psql I have the possibility
execute
> command in my server using "\!" or write one file using "\e".
These are done on the client side, not the server side. There is no
security issue here, because psql's user could equally well do the
same things without using psql.
regards, tom lane
--
----------------------------------------------------------------
THIAGO MALUF RESENDE
Consultor Voip e Programador WEB (Voip Developer and Web Developer)
Tel: +55 21 86042100
e-mail: [EMAIL PROTECTED]
