Re: pl/pgsql enabled by default

Neil Conway <neilc@samurai.com>

From: Neil Conway <neilc@samurai.com>
To: Mike Mascari <mascarm@mascari.com>
Cc: Andrew Dunstan <andrew@dunslane.net>, Andrew Sullivan <ajs@crankycanuck.ca>, pgsql-hackers@postgresql.org
Date: 2005-05-08T02:54:22Z
Lists: pgsql-hackers
Mike Mascari wrote:
> Correct, as the vulnerability exists within the 'SQL' language as well. 
> The only difference is that enabling plpgsql by default changes it from 
> a leak to a full blown flood.

How does it make any difference at all?

-Neil