On Wed, 24 Jun 2020 at 15:41, Alvaro Herrera <alvhe...@2ndquadrant.com> wrote:
> On 2020-Jun-24, Robert Haas wrote: > > > So really I think this turns on #1: is it plausible > > that people are using this feature, however inadvertent it may be, and > > is it potentially useful? I don't see that anybody's made an argument > > against either of those things. Unless someone can do so, I think we > > shouldn't disable this. > > People (specifically the jdbc driver) *are* using this feature in this > way, but they didn't realize they were doing it. It was an accident and > they didn't notice. > > Not sure we are using it as much as we accidently did it that way. It would be trivial to fix. That said I think we should fix the security hole this opens and leave the functionality. Dave
