Re: [HACKERS] Doc patch, index search_path where it's used to secure functions

Karl O. Pinc Fri, 28 Sep 2012 10:17:42 -0700

On 09/28/2012 11:28:39 AM, Karl O. Pinc wrote:

> Doc patch, index search_path where it's used to secure functions.
> search_path-securing.patch


Second version.  Should be indexing the concept, not the run-time 
setting.

Karl <k...@meme.com>
Free Software:  "You don't pay back, you pay forward."
                 -- Robert A. Heinlein

diff --git a/doc/src/sgml/ref/create_function.sgml b/doc/src/sgml/ref/create_function.sgml
index 8632a76..fb8a42d 100644
--- a/doc/src/sgml/ref/create_function.sgml
+++ b/doc/src/sgml/ref/create_function.sgml
@@ -673,6 +673,11 @@ SELECT * FROM dup(42);
  <refsect1 id="sql-createfunction-security">
   <title>Writing <literal>SECURITY DEFINER</literal> Functions Safely</title>
 
+   <indexterm>
+      <primary>search path</>
+      <secondary>securing functions</>
+   </indexterm>
+
    <para>
     Because a <literal>SECURITY DEFINER</literal> function is executed
     with the privileges of the user that created it, care is needed to

-- 
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers

Re: [HACKERS] Doc patch, index search_path where it's used to secure functions

Reply via email to