Goulet, Dick wrote:
> And in my book the executables are
> of zero value whereas the data files, and their contained data, are
> of infinite value. So under your scheme we're protecting the least
> valuable part of the system at the expense of the most valuable.
No, there is no expense in that sense. We are protecting as much as
possible while leaving as little as possible vulnerable. The fact that
the data files are owned by postgres is merely a necessary evil because
the database would otherwise be unusable. But there is no reason to
have more than that owned by postgres, even if it is of little value.
--
Peter Eisentraut
http://developer.postgresql.org/~petere/