From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
---|---|
To: | David Steele <david(at)pgmasters(dot)net> |
Cc: | "Suralkar, Yogendra (Yogendra)" <suralkary(at)avaya(dot)com>, "pgsql-bugs(at)lists(dot)postgresql(dot)org" <pgsql-bugs(at)lists(dot)postgresql(dot)org>, "Porob, Dattaram (Datta)" <porobd(at)avaya(dot)com>, "Oswal, Prashant (Prashant) **CTR**" <poswal(at)avaya(dot)com>, "Patil, Parag (Parag)" <paragp(at)avaya(dot)com>, "Devaraj, Sankar (Sankar)" <devarajs(at)avaya(dot)com>, "Singh, Payal (Payal) **CTR**" <payals(at)avaya(dot)com> |
Subject: | Re: Unable to connect to PostgreSQL DB as root user when private key is owned by root with permission 640 |
Date: | 2022-05-26 18:16:21 |
Message-ID: | 2415119.1653588981@sss.pgh.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-bugs |
David Steele <david(at)pgmasters(dot)net> writes:
> On 5/24/22 16:05, Tom Lane wrote:
>> After further poking at this, I see that we also have to drop the check of
>> file ownership. That was already dropped once long ago (3405f2b9253), on
>> the grounds that if the file has suitable permissions but its ownership
>> isn't what we expect then our read attempt will fail, so we needn't check
>> ownership explicitly. While I'd prefer a more explicit error than the
>> "Permission denied" that you get with this approach, the intent of this
>> patch was not to create any new failure modes, so I think we're stuck
>> with that.
> That makes sense. Seems I should have dug further into why the server
> does this but the client does not.
Pushed that.
>> Open questions:
>> * This puts us back into a situation where the frontend and server tests
>> are not in sync. Do we want to relax the server's checks to match this,
>> or just leave that side as it stands?
> I'm inclined to leave it as is in the back branches to avoid any other
> unintended consequences. Perhaps we could make the change for PG15?
Yeah, I'm unenthused now about touching this in the back branches.
But do we want to do it in HEAD, or just leave well enough alone?
regards, tom lane
From | Date | Subject | |
---|---|---|---|
Next Message | David Steele | 2022-05-26 20:01:49 | Re: Unable to connect to PostgreSQL DB as root user when private key is owned by root with permission 640 |
Previous Message | Bruce Momjian | 2022-05-26 14:48:27 | Re: BUG #17485: Records missing from Primary Key index when doing REINDEX INDEX CONCURRENTLY |