Home > mailing lists

system administration functions with hardcoded superuser checks - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	system administration functions with hardcoded superuser checks
Date	December 18, 2012 20:08:59
Msg-id	50D0A336.7030605@gmx.net Whole thread Raw
Responses	Re: system administration functions with hardcoded superuser checks (Simon Riggs <simon@2ndQuadrant.com>) Re: system administration functions with hardcoded superuser checks (Pavel Stehule <pavel.stehule@gmail.com>) Re: system administration functions with hardcoded superuser checks (Noah Misch <noah@leadboat.com>) Re: system administration functions with hardcoded superuser checks (Peter Eisentraut <peter_e@gmx.net>)
List	pgsql-hackers

Tree view

There are some system administration functions that have hardcoded
superuser checks, specifically:

pg_reload_conf
pg_rotate_logfile
pg_read_file
pg_read_file_all
pg_read_binary_file
pg_read_binary_file_all
pg_stat_file
pg_ls_dir

Some of these are useful in monitoring or maintenance tools, and the
hardcoded superuser checks require that these tools run with maximum
privileges.  Couldn't we just install these functions without default
privileges and allow users to grant privileges as necessary?

pgsql-hackers by date:

From: Bruce Momjian
Date: 18 December 2012, 19:38:33
Subject: Re: [GENERAL] trouble with pg_upgrade 9.0 -> 9.1

From: Simon Riggs
Date: 18 December 2012, 20:29:06
Subject: Re: system administration functions with hardcoded superuser checks

system administration functions with hardcoded superuser checks - Mailing list pgsql-hackers

Previous

Next