Re: Row data is reflected in DETAIL message when constraints fail oninsert/update

Поиск
Список
Период
Сортировка
От Ravi Krishna
Тема Re: Row data is reflected in DETAIL message when constraints fail oninsert/update
Дата
Msg-id 9B4574FD-05FA-40CE-A5DB-3820B4E73C75@mail.com
обсуждение исходный текст
Ответ на Re: Row data is reflected in DETAIL message when constraints fail on insert/update  (Tom Lane <tgl@sss.pgh.pa.us>)
Список pgsql-general
Дерево обсуждения 
> More generally: I find this complaint a little confusing.  We did not
> consider reporting the "show row contents" DETAIL to the client to be a
> security hazard when it was added, because one would think that that's
> just data that the client already knows anyway.  I'd be interested to see
> a plausible use-case in which the message would reflect PII that had not
> been supplied by or available to the client.

I had the same issue in pgaudit which was spilling PHI data in PG logs which we
were feeding to sumologic.  I had to write a python masking program to strip out
literal values from the PG log.

В списке pgsql-general по дате отправления:

Предыдущее
От: Tom Lane
Дата:
Сообщение: Re: Row data is reflected in DETAIL message when constraints fail on insert/update
Следующее
От: Adrian Klaver
Дата:
Сообщение: Re: Detaching multiple partitions in 1 ALTER TABLE statement