Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- From: "Dave Page" <dpage(at)pgadmin(dot)org>
- To: "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>
- Cc: "Lars Olson" <leolson1(at)uiuc(dot)edu>, pgsql-bugs(at)postgresql(dot)org
- Subject: Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- Date: Mon, 31 Mar 2008 23:04:25 +0100
On Mon, Mar 31, 2008 at 10:46 PM, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote: > If this were a security issue, you already spilled the beans by > reporting it to a public mailing list; so I'm unsure what you are > concerned about. I'd wager that Lars didn't realise the bug form goes straight to the list. We should probably make that more clear. On the other hand it does say to report security issues to security(at)(dot)(dot)(dot) -- Dave Page EnterpriseDB UK Ltd: http://www.enterprisedb.com PostgreSQL UK 2008 Conference: http://www.postgresql.org.uk
- Follow-Ups:
- Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- From: Alvaro Herrera
- Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- References:
- Prev by Date: Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- Next by Date: Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- Previous by thread: Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- Next by thread: Re: BUG #4074: Using SESSION_USER or CURRENT_USER in a view definition is unsafe
- Indexes: