Re: Specification for Trusted PLs?

Cédric Villemain <cedric.villemain.debian@gmail.com>

From: Cédric Villemain <cedric.villemain.debian@gmail.com>
To: Jan Wieck <JanWieck@yahoo.com>
Cc: Tom Lane <tgl@sss.pgh.pa.us>, Joshua Tolley <eggyknap@gmail.com>, David Fetter <david@fetter.org>, Robert Haas <robertmhaas@gmail.com>, Stephen Frost <sfrost@snowman.net>, Magnus Hagander <magnus@hagander.net>, Josh Berkus <josh@agliodbs.com>, pgsql-hackers <pgsql-hackers@postgresql.org>
Date: 2010-05-22T20:53:49Z
Lists: pgsql-hackers
2010/5/21 Jan Wieck <JanWieck@yahoo.com>:
> The original idea was that a trusted language does not allow an unprivileged
> user to gain access to any object or data, he does not have access to
> without that language.
>
> This does not include data transformation functionality, like string
> processing or the like. As long as the user had legitimate access to the
> input datum, then every derived form thereof is OK.

I find the current doc enough, add this prose from Jan as a comment
might help people perhaps.


>
>
> Jan
>
> --
> Anyone who trades liberty for security deserves neither
> liberty nor security. -- Benjamin Franklin
>
> --
> Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgsql-hackers
>



-- 
Cédric Villemain