> I want to know if there is any plan in future versions
> of PG to obfuscate the source code of some objects of
> the database, specially the functions of the backend ?
> I mean the text definition of each function or perhaps
> even triggers of the database.

Not seriously, no.  Security by obscurity is not terribly effective, so adding 
a method to conceal function defintions has never been a high priority for 
the project, especially as it would introduce multiple complications in other 
code.  The only thing we've seriously discussed is the possiblity of not 
displaying function definitions to roles which don't have any permissions on 
the function.  But I don't know anyone who's actually writing code for that.

Thing is, if you have a highly knowledgable hostile user who has a valid psql 
login then you have problems well beyond them seeing your function 

But if you really think this is the strategy for your application, I suggest 
that you write your functions in C and compile them, which will give you some 
degree of obfuscation.  Or give SEPostgres a try if you really want to lock 
down your DB application.

Josh Berkus
PostgreSQL @ Sun
San Francisco

---------------------------(end of broadcast)---------------------------
TIP 2: Don't 'kill -9' the postmaster

Reply via email to