Dimitri Fontaine <dimi...@2ndquadrant.fr> writes: > At the SQL level, extensions do live in a database. The only reason why > we currently have them on the file system is binary executables (.so, > .dylib, .dll). And those are not per database, not even per cluster, not > even per major version, they are *per server*. It's something that makes > me very sad, and that I want to have the chance to fix later, but that > won't happen in 9.3, and certainly not in that very patchâ¦
I think you're wasting your time to imagine that that case will ever be "fixed". Allowing the server to scribble on executable files would set off all kinds of security alarm bells, and rightly so. If Postgres ever did ship with such a thing, I rather imagine that I'd be required to patch it out of Red Hat releases (not that SELinux wouldn't prevent it from happening anyway). I do see an argument for allowing SQL-only extensions to be installed this way, since that doesn't allow the execution of anything the user couldn't execute anyway. There's no need to worry about anything except control and script files though. regards, tom lane -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers