Restrict non-superusers to password authenticated connections

Joe Conway <mail@joeconway.com>

Commit: d92583f88ec75eb73855a794230aa94c4366f103
Author: Joe Conway <mail@joeconway.com>
Date: 2007-07-08T17:12:38Z
Releases: 8.3.0
Restrict non-superusers to password authenticated connections
to prevent possible escalation of privilege. Provide new SECURITY
DEFINER functions with old behavior, but initially REVOKE ALL
from public for these functions. Per list discussion and design
proposed by Tom Lane. A different approach will be used for
back-branches, committed separately.

Files

PathChange+/−
contrib/dblink/dblink.c modified +18 −1
contrib/dblink/dblink.sql.in modified +18 −0
contrib/dblink/doc/connection modified +47 −1