Home > mailing lists

Re: Possibility to disable `ALTER SYSTEM` - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Possibility to disable `ALTER SYSTEM`
Date	January 31 07:25:28
Msg-id	2391022.1706675128@sss.pgh.pa.us Whole thread Raw
In response to	Re: Possibility to disable `ALTER SYSTEM` (Magnus Hagander <magnus@hagander.net>)
Responses	Re: Possibility to disable `ALTER SYSTEM`
List	pgsql-hackers

Tree view

Magnus Hagander <magnus@hagander.net> writes:
> On Tue, Jan 30, 2024 at 10:48 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:
>> I was imagining using selinux and/or sepgsql to directly prevent
>> writing postgresql.auto.conf from the Postgres account.

> Wouldn't a simple "chattr +i postgresql.auto.conf" work?

Hmm, I'm not too familiar with that file attribute, but it looks
like it'd work (on platforms that support it).

My larger point here is that trying to enforce restrictions on
superusers *within* Postgres is simply not a good plan, for
largely the same reasons that Robert questioned making the
GUC mechanism police itself.  It needs to be done outside,
either at the filesystem level or via some other kernel-level
security system.

            regards, tom lane

pgsql-hackers by date:

From: Alexander Lakhin
Date: 31 January, 07:00:00
Subject: Re: Fix some ubsan/asan related issues

From: David Rowley
Date: 31 January, 07:25:48
Subject: Re: Apply the "LIMIT 1" optimization to partial DISTINCT

Re: Possibility to disable `ALTER SYSTEM` - Mailing list pgsql-hackers

Previous

Next