Date: Fri, 12 Sep 2003 17:13:38 -0500 From: Kirk Strauser <kirk@strauser.com> To: "Andrew L. Gould" <algould@datawok.com> Cc: freebsd-questions@freebsd.org Subject: Re: Trying to secure PostgreSQL Message-ID: <87fzj1bqp9.fsf@strauser.com> In-Reply-To: <200309121639.14573.algould@datawok.com> (Andrew L. Gould's message of "Fri, 12 Sep 2003 16:39:14 -0500") References: <87r82lbu4y.fsf@strauser.com> <200309121639.14573.algould@datawok.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-=-=
Content-Transfer-Encoding: quoted-printable
At 2003-09-12T21:39:14Z, "Andrew L. Gould" <algould@datawok.com> writes:
> You're looking for something difficult when the easier answer is correct.
>
> As root, set pgsql's password by executing:
>
> passwd pgsql
What would that buy me? After doing that, I can still access any database
on the system with:
kirk@kanga:~$ psql -U pgsql template1
Welcome to psql 7.3.4, the PostgreSQL interactive terminal.
without being prompted for a password. I don't want users, even local
users, to have full run of the database as the user of their choice.
=2D-=20
Kirk Strauser
--=-=-=
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQA/YkUf5sRg+Y0CpvERAqYgAJ45l949AjbafWtDhid/OsfmUuEVsgCfW4UT
/9e8U8cS/NAjV/Wran+aF60=
=x4RV
-----END PGP SIGNATURE-----
--=-=-=--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87fzj1bqp9.fsf>