| From: | Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> |
|---|---|
| To: | Dave Page <dpage(at)pgadmin(dot)org> |
| Cc: | Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Application name patch - v2 |
| Date: | 2009-10-19 09:22:16 |
| Message-ID: | 162867790910190222i6f4ca29dxa60c752d10b6d258@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
2009/10/19 Dave Page <dpage(at)pgadmin(dot)org>:
> On Mon, Oct 19, 2009 at 10:01 AM, Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> wrote:
>
>> There are some log parser's and analysers. So people use reduced log
>> often. The reductions rules should be based on application name. Why
>> not? And when somebody modifies to appliacation name, then these logs
>> finish in '/dev/null.
>
> So if your insecure app worries you, just don't use %a in the log
> prefix, or ignore the column in the CSV logs.
I'll know so %a is insecure, but what other users? Every live
application is potencially insecure. I agree, so this value is useful
for debuging, but with proposed features the value is diskutable.
Pavel
>
>
>
> --
> Dave Page
> EnterpriseDB UK: http://www.enterprisedb.com
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Pavel Stehule | 2009-10-19 09:24:32 | Re: Application name patch - v2 |
| Previous Message | Andrew Dunstan | 2009-10-19 09:12:34 | Re: Application name patch - v2 |