Skip site navigation (1) Skip section navigation (2)

Re: file permissions for /usr/bin/postgres

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: "Smith, Andy V " <andy(dot)v(dot)smith(at)citi(dot)com>
Cc: "'pgsql-admin(at)postgresql(dot)org'" <pgsql-admin(at)postgresql(dot)org>
Subject: Re: file permissions for /usr/bin/postgres
Date: 2011-07-13 15:40:58
Message-ID: (view raw, whole thread or download thread mbox)
Lists: pgsql-admin
"Smith, Andy V " <andy(dot)v(dot)smith(at)citi(dot)com> writes:
> Can someone please advise what the most secure permissions are allowed for /usr/bin/postgres ?
> At the moment we have:

> -bash-3.2# ls -lt /usr/bin/postgres
> -rwxr-xr-x 1 root root 4574696 Jan 28 19:31 /usr/bin/postgres

> This is not considered secure.

"Not considered secure" by whom, and on what grounds?  Those are pretty
much the standard permission settings for any executable in /usr/bin.
What threat do you suppose you'll ameliorate by changing them?

			regards, tom lane

In response to

pgsql-admin by date

Next:From: Kevin GrittnerDate: 2011-07-13 15:46:19
Subject: Re: read only error..hard reboot not work as well
Previous:From: Tom LaneDate: 2011-07-13 15:29:55
Subject: Re: Importing the dump file in postgresql-7.4.23

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group