Обсуждение: BUG #7767: pg_ctl allows postgres running under administrator's privilege

The following bug has been logged on the website:

Bug reference:      7767
Logged by:          yangyd
Email address:      yangyd@cn.fujitsu.com
PostgreSQL version: 9.2.2
Operating system:   Windows 7 Professional
Description:        =


I found that it's possible to start the postgres process as the
administrator of the system using `pg_ctl start -D data`, while `postgres -D
data` will complain "Execution of PostgreSQL by a user with administrative
permissions is not =

permitted."

I confirmed with Process Explorer that the postgres process created by
pg_ctl does running under the administrator account.

Is this behavior intended?
Thanks.

On Fri, Dec 21, 2012 at 4:02 AM,  <yangyd@cn.fujitsu.com> wrote:
> The following bug has been logged on the website:
>
> Bug reference:      7767
> Logged by:          yangyd
> Email address:      yangyd@cn.fujitsu.com
> PostgreSQL version: 9.2.2
> Operating system:   Windows 7 Professional
> Description:
>
> I found that it's possible to start the postgres process as the
> administrator of the system using `pg_ctl start -D data`, while `postgres -D
> data` will complain "Execution of PostgreSQL by a user with administrative
> permissions is not
> permitted."
>
> I confirmed with Process Explorer that the postgres process created by
> pg_ctl does running under the administrator account.
>
> Is this behavior intended?

It's supposed to still run under the administrative account, however,
pg_ctl will create what's called a restricted token and execute it as
that - so it will run as Administrator but without access to any
permissions received by being in the Administrators or Power Users
group for example.

You can verify it by for example attempting to COPY to a file that
only administrators have access to (access must be granted through the
group, of course)


--
 Magnus Hagander
 Me: http://www.hagander.net/
 Work: http://www.redpill-linpro.com/