| From: | Dave Page <dpage(at)pgadmin(dot)org> |
|---|---|
| To: | Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> |
| Cc: | Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Application name patch - v2 |
| Date: | 2009-10-19 09:31:45 |
| Message-ID: | 937d27e10910190231q16c29883uc8e35b6f75935fa7@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Mon, Oct 19, 2009 at 10:22 AM, Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> wrote:
> 2009/10/19 Dave Page <dpage(at)pgadmin(dot)org>:
>> On Mon, Oct 19, 2009 at 10:01 AM, Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> wrote:
>>
>>> There are some log parser's and analysers. So people use reduced log
>>> often. The reductions rules should be based on application name. Why
>>> not? And when somebody modifies to appliacation name, then these logs
>>> finish in '/dev/null.
>>
>> So if your insecure app worries you, just don't use %a in the log
>> prefix, or ignore the column in the CSV logs.
>
> I'll know so %a is insecure, but what other users? Every live
> application is potencially insecure. I agree, so this value is useful
> for debuging, but with proposed features the value is diskutable.
%a is not 'insecure'. It's user-configurable. There's a difference.
If you don't trust your application or your users not to change the
application name, then don't rely on it in your logs or stats. For
other users that do trust their app and don't expect their users to be
going out of their way to mislead the DBA, this can be a useful
feature, as it's proven to be for others that have used the equivalent
facilities in other DBMSs.
--
Dave Page
EnterpriseDB UK: http://www.enterprisedb.com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dimitri Fontaine | 2009-10-19 09:35:12 | Re: Application name patch - v2 |
| Previous Message | Pavel Stehule | 2009-10-19 09:24:32 | Re: Application name patch - v2 |