Re: [HACKERS] plperl intial pass

Jan Wieck <wieck@debis.com>

From: wieck@debis.com (Jan Wieck)
To: oleg@sai.msu.su (Oleg Bartunov)
Cc: mhh@mindspring.com, pgsql-hackers@postgreSQL.org
Date: 1999-07-26T09:15:25Z
Lists: pgsql-hackers
>
> Great,
>
> just compiled and install but need to look at some examples :-)
> btw, here is a patch for createlang command to enable plperl
> I'm not sure about trusted field.
>
> --- createlang  Sat Jul 24 22:27:05 1999
> +++ /usr/local/pgsql/bin/createlang     Wed Jul 21 19:36:55 1999
> @@ -84,9 +84,6 @@
>         plpgsql)        lancomp="PL/pgSQL"
>                                 trusted="TRUSTED"
>                                 handler="plpgsql_call_handler";;
> -       plperl)         lancomp="PL/Perl"
> -                               trusted="TRUSTED"
> -                               handler="plperl_call_handler";;
>         pltcl)          lancomp="PL/Tcl"
>                                 trusted="TRUSTED"
>                                 handler="pltcl_call_handler";;

    I  wouldn't  make  it  a  TRUSTED language right now, because
    until PL/Perl has a safe mode (what Mark said it hasn't  now)
    it  is  a  security  hole.   Unpriviliged  users could create
    functions in PL/Perl that modify the hba.conf!


Jan

--

#======================================================================#
# It's easier to get forgiveness for being wrong than for being right. #
# Let's break this rule - forgive me.                                  #
#========================================= wieck@debis.com (Jan Wieck) #