As with any server daemon that is accessible to the outside
world, it is advisable to run PostgreSQL under a separate user account. This
user account should only own the data that is managed by the
server, and should not be shared with other daemons. (For example,
using the user
nobody is a bad idea.)
It is not advisable to install executables owned by this user
because compromised systems could then modify their own
To add a Unix user account to your system, look for a command
adduser. The user name postgres is often used, and is assumed
throughout this book, but you can use another name if you like.
If you see anything in the documentation that is not correct, does not match your experience with the particular feature or requires further clarification, please use this form to report a documentation issue.