Re: setuid(geteuid());?

> Bruce Momjian <pgman@candle.pha.pa.us> writes:
> > I understand, but how do we get suid execution.  Does someone have to
> > set the seuid bit on the executable?
> 
> Probably so, but I could see someone thinking they could do that as a
> substitute for saying "su - postgres" on every startup.
> 
> If we are going to take the trouble to refuse to run when euid = 0,
> then it also behooves us to guard against ruid = 0.

OK, that's what I thought.  The command is not needed in our default
configuration.  I agree we should prevent people from setting up bad
configurations if we can.

--  Bruce Momjian                        |  http://candle.pha.pa.us pgman@candle.pha.pa.us               |  (610)
853-3000+  If your life is a hard drive,     |  830 Blythe Avenue +  Christ can be your backup.        |  Drexel Hill,
Pennsylvania19026