Re: BUG #15182: Canceling authentication due to timeout aka Denial of Service Attack

Andres Freund <andres@anarazel.de>

From: Andres Freund <andres@anarazel.de>
To: pgsql-hackers@lists.postgresql.org,Michael Paquier <michael@paquier.xyz>,Robert Haas <robertmhaas@gmail.com>
Cc: Jeremy Schneider <schnjere@amazon.com>,PostgreSQL-development <pgsql-hackers@postgresql.org>,"Albin, Lloyd P" <lalbin@scharp.org>
Date: 2018-07-24T04:17:53Z
Lists: pgsql-bugs, pgsql-hackers

Commits

Same data as JSON: GET /api/v1/messages/:b64id/commits the thread's linked commits as JSON, with link sources. API reference →
  1. Improve VACUUM and ANALYZE by avoiding early lock queue

  2. Improve TRUNCATE by avoiding early lock queue

  3. Restrict access to reindex of shared catalogs for non-privileged users

  4. Improve behavior of concurrent CLUSTER.


On July 23, 2018 9:14:03 PM PDT, Michael Paquier <michael@paquier.xyz> wrote:
>- While it would make sense, at least to me, to make VACUUM fall into
>if
>allow_system_table_mods is allowed, 

I might be mis-parsing this due to typos. Are you actually suggesting vacuum on system tables should depend on that GUC? If so, why? That's seems like a terrible idea. It's pretty normal to occasionally have to vacuum them?


Andres
-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.