[COMMITTERS] pgsql: Restrict non-superusers to password authenticated connections to

Joe Conway Sun, 08 Jul 2007 18:45:10 -0700

Log Message:
-----------
Restrict non-superusers to password authenticated connections
to prevent possible escalation of privilege. Provide new SECURITY
DEFINER functions with old behavior, but initially REVOKE ALL
from public for these functions. Per list discussion and design
proposed by Tom Lane.


Tags:
----
REL7_3_STABLE

Modified Files:
--------------
    pgsql/contrib/dblink:
        dblink.c (r1.15.2.4 -> r1.15.2.5)
        
(http://developer.postgresql.org/cvsweb.cgi/pgsql/contrib/dblink/dblink.c.diff?r1=1.15.2.4&r2=1.15.2.5)
        dblink.sql.in (r1.7 -> r1.7.2.1)
        
(http://developer.postgresql.org/cvsweb.cgi/pgsql/contrib/dblink/dblink.sql.in.diff?r1=1.7&r2=1.7.2.1)
    pgsql/contrib/dblink/doc:
        connection (r1.1 -> r1.1.2.1)
        
(http://developer.postgresql.org/cvsweb.cgi/pgsql/contrib/dblink/doc/connection.diff?r1=1.1&r2=1.1.2.1)

---------------------------(end of broadcast)---------------------------
TIP 1: if posting/reading through Usenet, please send an appropriate
       subscribe-nomail command to [EMAIL PROTECTED] so that your
       message can get through to the mailing list cleanly

[COMMITTERS] pgsql: Restrict non-superusers to password authenticated connections to

Reply via email to