On 12/22/07, Peter Eisentraut <[EMAIL PROTECTED]> wrote: > Bruce Momjian wrote: > > The fundamental problem is that because we don't require root, any user's > > postmaster or pretend postmaster is as legitimate as anyone else's. SSL > > certificates add legitimacy checks for TCP, but not for unix domain > > sockets. > > Wouldn't SSL work over Unix-domain sockets as well? The API only deals with > file descriptors.
For Unix sockets it should be enough to just check server process uid, no? (FYI - Debian already puts unix socket to directory writable only to postgres user, so they dont have the problem. Maybe we should encourage distros to move away from /tmp?) -- marko ---------------------------(end of broadcast)--------------------------- TIP 6: explain analyze is your friend
