Skip site navigation (1) Skip section navigation (2)

Re: [HACKERS] Connection to PostgreSQL Using Certificate: Wrong Permissions on Private Key File

From: "korry" <korry(dot)douglas(at)enterprisedb(dot)com>
To: "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: "Kevin Hunter" <hunteke(at)earlham(dot)edu>,"Angus Black Atkins-Trimnell" <trimnell(at)uic(dot)edu>,"Postgres General List" <pgsql-general(at)postgresql(dot)org>,<pgsql-hackers(at)postgresql(dot)org>
Subject: Re: [HACKERS] Connection to PostgreSQL Using Certificate: Wrong Permissions on Private Key File
Date: 2008-03-31 22:55:15
Message-ID: 47F16BD3.8030408@enterprisedb.com (view raw or flat)
Thread:
Lists: pgsql-generalpgsql-hackers
> Now libpq doesn't have any provision for DETAIL or HINT in its
> locally-generated messages at the moment, so we can't just duplicate
> the backend message, but we could do something like this example
> from elsewhere in libpq:
>
>     if (stat_buf.st_mode & (S_IRWXG | S_IRWXO))
>     {
>         fprintf(stderr,
>                 libpq_gettext("WARNING: password file \"%s\" has world or group read access; permission should be u=rw (0600)\n"),
>                 pgpassfile);
>         return NULL;
>     }
>   
Hmmm... I'm not crazy about libpq printing error messages to stderr.  
The client application can't intercept those messages. And those 
messages will often get lost - many client applications don't have 
useful stderr streams (think GUI application on Win32).

          -- Korry

-- 

  Korry Douglas  <korryd(at)enterprisedb(dot)com>
  EnterpriseDB    http://www.enterprisedb.com


In response to

Responses

pgsql-hackers by date

Next:From: Rafael MartinezDate: 2008-03-31 23:02:34
Subject: Guessing future postgresql features
Previous:From: Magnus HaganderDate: 2008-03-31 20:23:32
Subject: Re: POSIX shared memory support

pgsql-general by date

Next:From: Michelle KonzackDate: 2008-04-01 00:17:06
Subject: FW by pgsql-general-owner@postgresql.org : [pgsql-general] Daily digest v1.8030 (22 messages)
Previous:From: Olexandr MelnykDate: 2008-03-31 20:52:57
Subject: Re: GSoC Proposal: PL/Mono

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group