On Thu, Oct 21, 2004 at 02:10:48PM -0400, Tom Lane wrote: > It was suggested to me off-list that libpq should do > "fcntl(fd, F_SETFD, FD_CLOEXEC)" on the socket connecting to the server. > This would prevent any child program from accidentally or maliciously > interfering with the connection. It would also prevent people from > deliberately turning over a connection to a child; I'm not sure that > that's useful, but I'm not sure it's useless either. > > Comments, opinions?
This is a very good idea. We've had problems with Perl programs that call other scripts (over an exec boundary) and end up with unnecessary DBD::Pg file handles hanging around. This would be good to prevent that. -Dom ---------------------------(end of broadcast)--------------------------- TIP 8: explain analyze is your friend