Skip site navigation (1) Skip section navigation (2)

Re: postgres database user account

From: "Kevin Grittner" <Kevin(dot)Grittner(at)wicourts(dot)gov>
To: <Maria(dot)L(dot)Wilson-1(at)nasa(dot)gov>,"Joe R(dot) Plugge" <JRPlugge(at)west(dot)com>
Cc: "Maria Louise (LARC-E301)[SCIENCE SYSTEMS APPLICATIONS] Wilson" <m(dot)l(dot)wilson(at)nasa(dot)gov>, "pgsql-admin(at)postgresql(dot)org" <pgsql-admin(at)postgresql(dot)org>
Subject: Re: postgres database user account
Date: 2010-06-30 20:52:08
Message-ID: (view raw, whole thread or download thread mbox)
Lists: pgsql-admin
"Maria L. Wilson" <Maria(dot)L(dot)Wilson-1(at)nasa(dot)gov> wrote:
> What we are planning on doing with the OS acct (postgres) is only
> allowing users sudo ability to this account.  Nobody should be
> able to directly log into it.  Do you think that will cause
> problems?
It's what we do.  We use ident logins from this account, and use it
for maintenance jobs scheduled through crontab, such as database
vacuum and some backup related processes.  It works well for us, and
we figure that if someone can run as root, they can trash the
database anyway, so we don't think we're opening up any security
holes with it.

In response to

pgsql-admin by date

Next:From: Tom LaneDate: 2010-06-30 20:59:24
Subject: Re: cache lookup failed for index
Previous:From: Gilberto Castillo MartínezDate: 2010-06-30 20:49:31
Subject: Re: postgres database user account

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group