Re: Add on_trusted_init and on_untrusted_init to plperl UPDATED [PATCH]
David E. Wheeler <david@kineticode.com>
From: "David E. Wheeler" <david@kineticode.com>
To: Tom Lane <tgl@sss.pgh.pa.us>
Cc: Andrew Dunstan <andrew@dunslane.net>, Tim Bunce <Tim.Bunce@pobox.com>, Alex Hunsaker <badalex@gmail.com>, pgsql-hackers@postgresql.org, Robert Haas <robertmhaas@gmail.com>
Date: 2010-02-03T19:15:56Z
Lists: pgsql-hackers
On Feb 3, 2010, at 11:04 AM, Tom Lane wrote: > What I was actually wondering about, however, is the extent to which > the semantics of Perl code could be changed from an on_init hook --- > is there any equivalent of changing search_path or otherwise creating > trojan-horse code that might be executed unexpectedly? Yes. > And if so is > there any point in trying to guard against it? No. This is Perl we're talking about. The DBA should vet code before putting it into on_perl_init. > AIUI there isn't > anything that can be done in on_init that couldn't be done in somebody > else's function anyhow. Correct. Best, David