Dan Langille wrote:
> On Mon, 23 Dec 2002, Bruce Momjian wrote:
>
> >
> > PostgreSQL is designed to _not_ require root access, so we just make
> > everything owned by the install user. I don't see how group checks can
> > help there. Also, there is no postgres group, at least by default, and
> > no special handling based on group, though we do allow group permissions
> > on the /tmp socket file.
>
> FWIW, I know the FreeBSD port creates both a pgsql user and a pgsql group.
> I have seen evidence that some Linux distributions create a postgres user.
Yes, that is true, and if they want to patch be-secure.c, that is fine.
However, we don't _assume_ such things exist, and don't require them.
That is the (secure) key. ;-)
--
Bruce Momjian | http://candle.pha.pa.us
pgman@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073