Josh Berkus <josh@agliodbs.com> writes:
- The superuser only generic file functions in the admin package have been posted for 8.0, but where (more or less ) silently dropped. These functions allow pgadmin to display the server logs, as well as editing pg_hba.conf and postgresql.conf without console access to whatever-pgsql-is-running-on. I'd like to see this at least as contrib module (the functions are probably safer than pl_sh).
Heck, I didn't even see these. I was going to write some in pgperl for my own use. These seem potentially very dangerous though, so we wouldn't want them installed by default.
My recollection is that they weren't "silently dropped", they were explicitly rejected after much discussion because of security worries
These functions were thoroughly discussed between Bruce, you and me, and I fixed all issues that came up until a point where Bruce would agree the functions to be reasonably safe. But it condensed down to something like "Tom doesn't like it" at the end. The functions are not only superuser only, but also restricted to the db cluster directory, making them no more dangerous than "drop table pg_class".
Regards, Andreas
---------------------------(end of broadcast)--------------------------- TIP 1: subscribe and unsubscribe commands go to [EMAIL PROTECTED]
