It is understood. But doesn't change things from my perspective. It would anyway be user, with sole access, nobody can elevate privileges to and only root can su to. The name, in that case, is irrelevant, but answer postgres gave me idea of the protection level here.
Thanks,
Oleg
On Wed, Jan 13, 2016 at 4:04 PM, Kevin Grittner <kgrittn@gmail.com> wrote:
But the user would not always be "postgres". To be accurate, it is the user which owns the files for the "cluster" (database instance) and which runs the database service. If a machine contains multiple clusters it is (IMO) best practice, for both security and operational reasons, to use a separate OS user for each cluster.
