Re: Exposure related to GUC value of ssl_passphrase_command

Fujii Masao <masao.fujii@oss.nttdata.com>

From: Fujii Masao <masao.fujii@oss.nttdata.com>
To: "Moon, Insung" <tsukiwamoon.pgsql@gmail.com>, Peter Eisentraut <peter.eisentraut@2ndquadrant.com>
Cc: Michael Paquier <michael@paquier.xyz>, Kyotaro Horiguchi <horikyota.ntt@gmail.com>, masao.fujii@gmail.com, amitlangote09@gmail.com, pgsql-hackers@lists.postgresql.org
Date: 2020-03-09T02:43:20Z
Lists: pgsql-hackers

On 2020/02/14 10:31, Moon, Insung wrote:
> Dear Hackers.
> 
> Thank you for an response.
> I registered this entry in commifest of 2020-03.
> # I registered in the security part, but if it is wrong, sincerely
> apologize for this.
> 
> And I'd like to review show authority to ssl_ * later and discuss it
> in a separate thread.

So, you are planning to start new discussion about this?

Regards,

-- 
Fujii Masao
NTT DATA CORPORATION
Advanced Platform Technology Group
Research and Development Headquarters



Commits

  1. Mark ssl_passphrase_command as GUC_SUPERUSER_ONLY.