Techly NewsGet the app

Get the latest tech news

The PostgreSQL community debates ALTER SYSTEM


Sometimes the smallest patches create the biggest discussions. A case in point would be the process by which the PostgreSQL community — not a group normally prone to extended, strongly worded megathreads — resolved the question of whether to merge a brief patch adding a new configuration parameter. Sometimes, a proposal that looks like a security patch is not, in fact, intended to be a security patch, but getting that point across can be difficult.

A case in point would be the process by which the PostgreSQL community — not a group normally prone to extended, strongly worded megathreads — resolved the question of whether to merge a brief patch adding a new configuration parameter. These included the command-line option and configuration parameter originally proposed, along with an event trigger, pushing it into an extension module, recognizing a sentinel file created by the administrator, or just changing the permissions on postgresql.auto.conf. Haas replied that the proposal was not a security feature, but Lane dismissed it as " a loaded foot-gun painted in kid-friendly colors" that would lead to more bogus CVE numbers being filed against the project.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of alter system

alter system

« Zynga’s Socialpoint partners with MrBeast on Top Troops in-game event
Microsoft is a national security threat: ex-White House cyber policy director »