| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | "Smith, Andy V " <andy(dot)v(dot)smith(at)citi(dot)com> |
| Cc: | "'pgsql-admin(at)postgresql(dot)org'" <pgsql-admin(at)postgresql(dot)org> |
| Subject: | Re: file permissions for /usr/bin/postgres |
| Date: | 2011-07-13 15:40:58 |
| Message-ID: | 5210.1310571658@sss.pgh.pa.us |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
"Smith, Andy V " <andy(dot)v(dot)smith(at)citi(dot)com> writes:
> Can someone please advise what the most secure permissions are allowed for /usr/bin/postgres ?
> At the moment we have:
> -bash-3.2# ls -lt /usr/bin/postgres
> -rwxr-xr-x 1 root root 4574696 Jan 28 19:31 /usr/bin/postgres
> This is not considered secure.
"Not considered secure" by whom, and on what grounds? Those are pretty
much the standard permission settings for any executable in /usr/bin.
What threat do you suppose you'll ameliorate by changing them?
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Kevin Grittner | 2011-07-13 15:46:19 | Re: read only error..hard reboot not work as well |
| Previous Message | Tom Lane | 2011-07-13 15:29:55 | Re: Importing the dump file in postgresql-7.4.23 |