Re: [PATCHES] Run-as-admin warning for win32 - Mailing list pgsql-patches

From Tom Lane
Subject Re: [PATCHES] Run-as-admin warning for win32
Date
Msg-id 29639.1083645812@sss.pgh.pa.us
Whole thread Raw
In response to Re: Run-as-admin warning for win32  (Bruce Momjian <pgman@candle.pha.pa.us>)
Responses Re: [PATCHES] Run-as-admin warning for win32
List pgsql-patches
Bruce Momjian <pgman@candle.pha.pa.us> writes:
> Tom Lane wrote:
>> Why?  If we refuse to run as root on Unix, I do not see an argument for
>> being more forgiving on Windows.

> I am not sure it is as easy to run as non-admin on Win32 as it is to run
> as non-root on Unix.  Is it?

Ease of use has nothing to do with this.  Given the demonstrated
security weaknesses of Windows, we would be completely irresponsible
to allow Postgres to be started in an obviously-insecure way on that
platform.

In other words, I do not wish to be the author of code that could become
the vector for the next SQL Slammer worm.

I am already deathly afraid of what the Windows port is likely to do
to Postgres' reputation for reliability and security.  Do *not* get
me started by proposing that we insert obvious security holes on lame
"ease of use" grounds.  Haven't the boys in Redmond already proven
the wrongness of those priorities many times over?

            regards, tom lane

---------------------------(end of broadcast)---------------------------
TIP 6: Have you searched our list archives?

               http://archives.postgresql.org

pgsql-patches by date:

Previous
From: Tom Lane
Date:
Subject: Re: smgr cleanup
Next
From: Tom Lane
Date:
Subject: Re: Run-as-admin warning for win32