Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: Securing stored procedures and triggers
- From: Douglas McNaught <doug(at)mcnaught(dot)org>
- To: "Scott Marlowe" <scott(dot)marlowe(at)gmail(dot)com>
- Cc: fasupport(at)allcoast(dot)net, pgsql-general(at)postgresql(dot)org
- Subject: Re: Securing stored procedures and triggers
- Date: Wed, 31 Oct 2007 15:50:10 -0400
"Scott Marlowe" <scott(dot)marlowe(at)gmail(dot)com> writes: > On 10/31/07, Douglas McNaught <doug(at)mcnaught(dot)org> wrote: > >> The only bulletproof way to do this currently is to write all your >> stored functions in C and load them as a shared library. > > Well, as I pointed out in my post, even that's not bullet-proof. As > long as decompilers / debuggers etc... exist, then compiling is just a > small barrier to a good hacker. The only way to win is not to play, > i.e. keep the code in house. Very true, I should have said "semi-bulletproof". :) In addition, the "interesting" parts of a C function would be the SPI queries, which unless further obfuscated would be easily extractable from the library using strings(1). -Doug
- References:
- Securing stored procedures and triggers
- From: mgould
- Re: Securing stored procedures and triggers
- From: Douglas McNaught
- Re: Securing stored procedures and triggers
- From: Scott Marlowe
- Securing stored procedures and triggers
- Prev by Date: Re: Replacing RDBMS
- Next by Date: Re: Server's Locale
- Previous by thread: Re: Securing stored procedures and triggers
- Next by thread: Re: Securing stored procedures and triggers
- Indexes: