Home > mailing lists

Re: Relaxing SSL key permission checks - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Relaxing SSL key permission checks
Date	February 18, 2016 18:52:11
Msg-id	28030.1455810717@sss.pgh.pa.us Whole thread Raw
In response to	Re: Relaxing SSL key permission checks (Andres Freund <andres@anarazel.de>)
Responses	Re: Relaxing SSL key permission checks
List	pgsql-hackers

Tree view

Andres Freund <andres@anarazel.de> writes:
> ... We don't prevent the user from making the
> configuration file world-writable either,

Maybe we should.  It wasn't an issue originally, because the config files
were necessarily inside $PGDATA which we restrict permissions on.  But
these days you can place the config files in places where untrustworthy
people could get at them.
        regards, tom lane

pgsql-hackers by date:

From: Alexander Korotkov
Date: 18 February 2016, 18:52:02
Subject: Re: WIP: Access method extendability

From: Benoit Lobréau
Date: 18 February 2016, 19:47:18
Subject: Re: Question about Restart point and checkpoint_segments

Re: Relaxing SSL key permission checks - Mailing list pgsql-hackers

Previous

Next