| From: | wieck(at)debis(dot)com (Jan Wieck) |
|---|---|
| To: | maillist(at)candle(dot)pha(dot)pa(dot)us (Bruce Momjian) |
| Cc: | jwieck(at)debis(dot)com, tgl(at)sss(dot)pgh(dot)pa(dot)us, dms(at)wplus(dot)net, pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | Re: [HACKERS] Installation procedure wishes |
| Date: | 1999-06-18 08:12:14 |
| Message-ID: | m10utl0-0003kLC@orion.SAPserv.Hamburg.dsh.de |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Bruce Momjian wrote:
>
> > But if you have choosen the conservative way of beeing a site
> > admin, noone will ever tell you if you forgot to DISABLE a
> > feature after a 50 hour restore marathon.
>
> Yes, the same reason postmaster -i flag is required to enable tcp/ip.
That's a detail I'm in doubt about. Our defaults for AF_UNIX
sockets is trust (and AFAIK must be because identd cannot
handle them). Thus any user who has a local shell account
could easily become db user postgres.
I think a default of host-localhost-ident-sameuser and giving
superusers the builtin right to become everyone would gain
higher security.
Jan
--
#======================================================================#
# It's easier to get forgiveness for being wrong than for being right. #
# Let's break this rule - forgive me. #
#========================================= wieck(at)debis(dot)com (Jan Wieck) #
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Zeugswetter Andreas IZ5 | 1999-06-18 09:04:01 | Re: [HACKERS] New TODO item |
| Previous Message | Dmitry Samersoff | 1999-06-18 06:55:09 | Re: [HACKERS] Installation procedure wishes |