Quick Links

pgbackrest - hiding the encryption password

From:	Ron <ronljohnsonjr(at)gmail(dot)com>
To:	pgsql-general <pgsql-general(at)postgresql(dot)org>
Subject:	pgbackrest - hiding the encryption password
Date:	2021-05-19 17:49:42
Message-ID:	31514690-5a7a-f929-c530-1dc24ac77f27@gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Currently on our RHEL 7.8 system, /etc/pgbackrest.conf is root:root and 633
perms. Normally, that's ok, but is a horrible idea when it's a plaintext
file, and stores the pgbackrest encryption password.

Would pgbackrest (or something else) break if I change it to
postgres:postgres 600 perms?

Is there a better way of hiding the password so that only user postgres can
see it?

--
Angular momentum makes the world go 'round.

Responses

Re: pgbackrest - hiding the encryption password at 2021-05-19 18:33:25 from Stephen Frost
Re: pgbackrest - hiding the encryption password at 2021-05-19 18:34:42 from David Steele
Re: pgbackrest - hiding the encryption password at 2021-05-22 10:52:43 from Peter J. Holzer

Browse pgsql-general by date

	From	Date	Subject
Next Message	David Steele	2021-05-19 18:27:38	Re: pgbackrest info of encrypted seems broken
Previous Message	Ron	2021-05-19 17:42:02	Re: pgbackrest info of encrypted seems broken