Re: [SECURITY] DoS attack on backend possible
Rod Taylor <rbt@zort.ca>
From: Rod Taylor <rbt@zort.ca>
To: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>
Cc: Justin Clift <justin@postgresql.org>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2002-08-19T17:17:54Z
Lists: pgsql-hackers
On Mon, 2002-08-19 at 13:14, Florian Weimer wrote: > Justin Clift <justin@postgresql.org> writes: > > > You guys *definitely* write scarey code. > > Yes, indeed. My code has a lot of unnecessary and error-prone input > validation checks because I don't trust the PostgreSQL parser. Bah.. Check the datatype is close and send it in. Would be much easier to capture database errors if you didn't have to base all error matches on regular expressions (error codes will be nice).