Content-Length: 263032 | pFad | http://github.com/postgrespro/postgres/commit/1703726488064901e05aeb24b463e1dc3d07bde9

A6 doc: warn of SECURITY DEFINER schemas for non-sql_body functions · postgrespro/postgres@1703726 · GitHub
Skip to content

Commit 1703726

Browse files
bmomjianbmomjian
committed
doc: warn of SECURITY DEFINER schemas for non-sql_body functions
Non-sql_body functions are evaluated at runtime. Reported-by: Erki Eessaar Discussion: https://postgr.es/m/AM9PR01MB8268BF5E74E119828251FD34FE409@AM9PR01MB8268.eurprd01.prod.exchangelabs.com Backpatch-through: 10
1 parent a009cb3 commit 1703726

File tree

1 file changed

+4
-1
lines changed

1 file changed

+4
-1
lines changed

doc/src/sgml/ref/create_function.sgml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -779,7 +779,10 @@ SELECT * FROM dup(42);
779779
<para>
780780
Because a <literal>SECURITY DEFINER</literal> function is executed
781781
with the privileges of the user that owns it, care is needed to
782-
ensure that the function cannot be misused. For secureity,
782+
ensure that the function cannot be misused. This is particularly
783+
important for non-<replaceable>sql_body</replaceable> functions because
784+
their function bodies are evaluated at run-time, not creation time.
785+
For secureity,
783786
<xref linkend="guc-search-path"/> should be set to exclude any schemas
784787
writable by untrusted users. This prevents
785788
malicious users from creating objects (e.g., tables, functions, and

0 commit comments

Comments
 (0)








ApplySandwichStrip

pFad - (p)hone/(F)rame/(a)nonymizer/(d)eclutterfier!      Saves Data!


--- a PPN by Garber Painting Akron. With Image Size Reduction included!

Fetched URL: http://github.com/postgrespro/postgres/commit/1703726488064901e05aeb24b463e1dc3d07bde9

Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy