| From: | "Lane Van Ingen" <lvaningen(at)esncc(dot)com> |
|---|---|
| To: | <pgsql-admin(at)postgresql(dot)org> |
| Subject: | Security Concerns over User 'postgres' |
| Date: | 2006-09-22 18:09:23 |
| Message-ID: | TWMAILaUfOImd1UtYj700000063@twmail.ESNCC.COM |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
We are running on Red Hat Enterprise Linux 4.0, using PostgreSQL 8.1.4 .
We created our PostgreSQL instance by compiling it from source, and the
instance is working just fine. User postgres runs the service; we do not
know what the password is, and we think it got created automatically by the
compile / install process.
However, my user community is concerned that the password for PostgreSQL
(which is MD5 encrypted) could be cracked, and would like to secure it from
having access to the shell. I tried attaching /sbin/nologin to the postgres
user login information, but that does not work since we use
/etc/init.d/postgresql to start and stop the engine.
Does anybody have any suggestions on how to properly address these concerns?
Lane M. Van Ingen
Charleston, SC
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2006-09-22 19:08:25 | Re: Security Concerns over User 'postgres' |
| Previous Message | Bruno Wolff III | 2006-09-22 17:05:57 | Re: Disk space consumed by pk not returned after vacuum or reindex |