Heikki Linnakangas <heikki.linnakan...@enterprisedb.com> writes:
> On 09/06/10 17:34, Tom Lane wrote:
>> I think #1 is a fool's errand. There is far too much structure to a
>> node tree that is outside the scope of what readfuncs.c is capable of
>> understanding.
> That's why I said that ruleutils.c will need to understand and complain
> about the rest.
And that's what I'm telling you is a hopeless task.
> Are you thinking we should retrict pg_get_expr() to superusers then?
I think that's the only solution that will actually fix the problem,
rather than lead to a never-ending series of security bugs. In
hindsight we should never have exposed that function in that form.
regards, tom lane
--
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers
