Home > mailing lists

Re: Putting the O/S user for "local" "peer" authentication in the "postgres" group vs chmod'ing the "pg*.conf" files to be readable by "all" - Mailing list pgsql-general

From	Peter J. Holzer
Subject	Re: Putting the O/S user for "local" "peer" authentication in the "postgres" group vs chmod'ing the "pg*.conf" files to be readable by "all"
Date	November 4, 2022 02:01:02
Msg-id	20221103230102.zytxxxwl5lgr5xnv@hjp.at Whole thread Raw
In response to	Re: Putting the O/S user for "local" "peer" authentication in the "postgres" group vs chmod'ing the "pg*.conf" files to be readable by "all" (Adrian Klaver <adrian.klaver@aklaver.com>)
List	pgsql-general

Tree view

On 2022-11-03 15:37:07 -0700, Adrian Klaver wrote:
> On 11/3/22 14:49, Bryn Llewellyn wrote:
> > So only "postgres" can edit the files that must be so edited.
>
> That is not true:
>
> aklaver@arkansas:~$ whoami
> aklaver
>
>
> aklaver@arkansas:~$ sudo vi /etc/postgresql/14/main/pg_hba.conf
> [sudo] password for aklaver:
>
> which opens pg_hba.conf for editing.

Well, yes. Root can edit the file, too. But root can edit anything[1].

        hp

[1] Except ... lots of stuff, actually.

--
   _  | Peter J. Holzer    | Story must make more sense than reality.
|_|_) |                    |
| |   | hjp@hjp.at         |    -- Charles Stross, "Creative writing
__/   | http://www.hjp.at/ |       challenge!"

Attachment

signature.asc

pgsql-general by date:

From: Tom Lane
Date: 04 November 2022, 01:49:40
Subject: Re: shutdown Postgres (standby) host causing timeout on other servers in replication

From: Ron
Date: 04 November 2022, 04:46:48
Subject: Re: shutdown Postgres (standby) host causing timeout on other servers in replication

Re: Putting the O/S user for "local" "peer" authentication in the "postgres" group vs chmod'ing the "pg*.conf" files to be readable by "all" - Mailing list pgsql-general

Attachment

Previous

Next