Quick Links

system administration functions with hardcoded superuser checks

From:	Peter Eisentraut <peter_e(at)gmx(dot)net>
To:	pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	system administration functions with hardcoded superuser checks
Date:	2012-12-18 17:09:10
Message-ID:	50D0A336.7030605@gmx.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

There are some system administration functions that have hardcoded
superuser checks, specifically:

pg_reload_conf
pg_rotate_logfile
pg_read_file
pg_read_file_all
pg_read_binary_file
pg_read_binary_file_all
pg_stat_file
pg_ls_dir

Some of these are useful in monitoring or maintenance tools, and the
hardcoded superuser checks require that these tools run with maximum
privileges. Couldn't we just install these functions without default
privileges and allow users to grant privileges as necessary?

Responses

Re: system administration functions with hardcoded superuser checks at 2012-12-18 17:29:01 from Simon Riggs
Re: system administration functions with hardcoded superuser checks at 2012-12-18 17:38:23 from Pavel Stehule
Re: system administration functions with hardcoded superuser checks at 2012-12-19 00:41:58 from Noah Misch
Re: system administration functions with hardcoded superuser checks at 2013-01-15 14:25:40 from Peter Eisentraut

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Simon Riggs	2012-12-18 17:29:01	Re: system administration functions with hardcoded superuser checks
Previous Message	Bruce Momjian	2012-12-18 16:38:26	Re: [GENERAL] trouble with pg_upgrade 9.0 -> 9.1