Re: security checks for largeobjects?

On Mon, Jun 22, 2009 at 11:31:45AM -0400, Tom Lane wrote:
> David Fetter <david@fetter.org> writes:
> > On Mon, Jun 22, 2009 at 05:18:51PM +0300, Peter Eisentraut wrote:
> >> MED is management of external data, whereas the large objects are
> >> internal, no?
> 
> > It depends on your definition.  The lo interface is pretty much to
> > objects on the file system directly.
> 
> LO's are transaction-controlled, and they're not (readily)
> accessible from outside the database.  Seems rather completely
> different from regular filesystem files.

Not according to SQL/MED.

> (In any case, there wasn't anything I liked about SQL/MED's ideas
> about external files, so I'm not in favor of modeling LO management
> after that.)

Good point ;)

Cheers,
David.
-- 
David Fetter <david@fetter.org> http://fetter.org/
Phone: +1 415 235 3778  AIM: dfetter666  Yahoo!: dfetter
Skype: davidfetter      XMPP: david.fetter@gmail.com

Remember to vote!
Consider donating to Postgres: http://www.postgresql.org/about/donate