Joshua Jore writes:
> Prevent execution of binaries that are in directories not owned by root
> Prevents interpreters from reading from STDIN
> Protect most proc info and *stat stuff
> Strips LD_PRELOAD and LD_LIBRARY_PATH
>
> Is there any reason that PostgreSQL or postmaster would have a problem
> with this
You might have trouble with the second item if you're using passwords,
since those have to come from stdin somehow. But your description is too
vague to tell. The others shouldn't pose any problems.
--
Peter Eisentraut peter_e@gmx.net http://funkturm.homeip.net/~peter