| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Andrew Dunstan <andrew(at)dunslane(dot)net> |
| Cc: | Mark Mielke <mark(at)mark(dot)mielke(dot)cc>, "D'Arcy J(dot)M(dot) Cain" <darcy(at)druid(dot)net>, Magnus Hagander <magnus(at)hagander(dot)net>, Bruce Momjian <bruce(at)momjian(dot)us>, Andrew Sullivan <ajs(at)crankycanuck(dot)ca>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Spoofing as the postmaster |
| Date: | 2007-12-29 19:16:19 |
| Message-ID: | 12059.1198955779@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Andrew Dunstan <andrew(at)dunslane(dot)net> writes:
> It might well be useful for us to look at drafting an SELinux policy,
There already is one. However, I'm not sure that it's ever been
reviewed by anyone who's Postgres-savvy (I certainly haven't looked
at it:-(). It would be useful for that to happen.
Another thing is that we could stand to have some documentation on how
to adjust the policy for local needs --- in particular, supporting
tablespaces that're outside /var/lib/pgsql.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2007-12-29 19:20:31 | Re: Spoofing as the postmaster |
| Previous Message | Joshua D. Drake | 2007-12-29 18:52:12 | Re: Spoofing as the postmaster |