| From: | Luca Ferrari <fluca1978(at)infinito(dot)it> |
|---|---|
| To: | "Birchall, Austen" <austen(dot)birchall(at)metoffice(dot)gov(dot)uk> |
| Cc: | "pgsql-novice(at)postgresql(dot)org" <pgsql-novice(at)postgresql(dot)org> |
| Subject: | Re: Linux group access to ..../psql/data & subdirectories |
| Date: | 2013-08-23 14:40:22 |
| Message-ID: | CAKoxK+6i+ciXOkoem2CVqOFuXGGpBiOS=x0wwpC_HmJb9Mun-g@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-novice |
On Fri, Aug 23, 2013 at 12:27 PM, Birchall, Austen
<austen(dot)birchall(at)metoffice(dot)gov(dot)uk> wrote:
> should that be
>
>
>
> chmod 750 data.
>
No. From te documentation:
http://www.postgresql.org/docs/current/interactive/creating-cluster.html
Because the data directory contains all the data stored in the
database, it is essential that it be secured from unauthorized access.
initdb therefore revokes access permissions from everyone but the
PostgreSQL user.
> However even after doing this wouldn’t the 700 permissions on the plsql
> directory on leaf above still prevent access?
>
Of course. But you don't need to have access to the pgdata directory,
or at least you can split things so that if you need access to same
part (e.g., configuration files or logs) you can have right to it.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | SpinDFazor | 2013-08-26 14:22:48 | positive bigint arrays |
| Previous Message | David Johnston | 2013-08-23 14:24:24 | Re: Linux group access to ..../psql/data & subdirectories |