[PostGIS] #5567: Mark PostGIS extensions as trusted ( PG13+ )
PostGIS
trac at osgeo.org
Wed Jan 24 05:58:49 PST 2024
#5567: Mark PostGIS extensions as trusted ( PG13+ )
--------------------------+---------------------------
Reporter: strk | Owner: strk
Type: enhancement | Status: closed
Priority: medium | Milestone: PostGIS 3.5.0
Component: postgis | Version: master
Resolution: wontfix | Keywords:
--------------------------+---------------------------
Changes (by robe):
* status: new => closed
* resolution: => wontfix
Comment:
Replying to [comment:6 rouault]:
> https://www.postgresql.org/docs/13/extend-extensions.html mentions
"Generally, this should not be set true for extensions that could allow
access to otherwise-superuser-only abilities, such as file system access."
So obviously you don't want postgis_raster to be trusted (at least when
out_db support is enabled). But even regular postgis can access files like
using ST_Transform() with a PROJ.4 string using +nadgrids=/some/path .
ST_TransformPipeline() can also use various PROJ operations that load
grids or JSON files.
Thanks for the input. Yah given all that I think we should definitely
stay untrusted. If a sysadmin really wants to mark our extensions
trusted, they can do so by changing the extension file.
--
Ticket URL: <https://trac.osgeo.org/postgis/ticket/5567#comment:7>
PostGIS <http://trac.osgeo.org/postgis/>
The PostGIS Trac is used for bug, enhancement & task tracking, a user and developer wiki, and a view into the subversion code repository of PostGIS project.
More information about the postgis-tickets
mailing list