Re: BUG #3809: SSL "unsafe" private key permissions bug

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: "Simon Arlott" <postgresql(dot)simon(at)arlott(dot)org>
Cc: pgsql-bugs(at)postgresql(dot)org
Subject: Re: BUG #3809: SSL "unsafe" private key permissions bug
Date: 2007-12-08 15:31:30
Message-ID: 11024.1197127890@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-bugs

"Simon Arlott" <postgresql(dot)simon(at)arlott(dot)org> writes:
> FATAL: unsafe permissions on private key file "server.key"
> DETAIL: File must be owned by the database user and must have no
> permissions for "group" or "other".

> It should be possible to disable this check in the configuration, so those
> of us capable of deciding what's unsafe can do so.

You haven't given any reason to think that you are smarter than this
check.

regards, tom lane

In response to

Responses

Browse pgsql-bugs by date

  From Date Subject
Next Message Simon Arlott 2007-12-08 15:41:16 Re: BUG #3809: SSL "unsafe" private key permissions bug
Previous Message Tom Lane 2007-12-08 15:20:37 Re: Follow up to Conditional SELECT returns incorrect results.