| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | n(dot)howden(at)eris(dot)qinetiq(dot)com |
| Cc: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: Auto Vacuum not starting unless postgres is restarted |
| Date: | 2006-09-15 16:27:38 |
| Message-ID: | 2704.1158337658@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Nick Howden <n(dot)howden(at)eris(dot)qinetiq(dot)com> writes:
> The firewall rules I have are :
> # Postgres Statistics Collector
> iptables -A INPUT -p udp \
> -i lo --sport 32779 --dport 32779 \
> -j ACCEPT
> iptables -A OUTPUT -p udp \
> -o lo --sport 32779 --dport 32779 \
> -j ACCEPT
> ###
Apparently somebody fired up postgres, noted the UDP port number it
happened to have bound to that particular time, and assumed that that
was the only possibility. This is not so. If I were you I'd just drop
the port-number constraints ... local loopback UDP traffic is not a
major source of security threats.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jeanna Geier | 2006-09-15 19:47:30 | Instructions For Building On Windows? |
| Previous Message | Nick Howden | 2006-09-15 15:57:40 | Re: Auto Vacuum not starting unless postgres is restarted |