Re: SSL over Unix-domain sockets
| От | Alvaro Herrera |
|---|---|
| Тема | Re: SSL over Unix-domain sockets |
| Дата | |
| Msg-id | 20080115155502.GG4473@alvh.no-ip.org обсуждение исходный текст |
| Ответ на | Re: SSL over Unix-domain sockets (Tom Lane <tgl@sss.pgh.pa.us>) |
| Ответы |
Re: SSL over Unix-domain sockets
|
| Список | pgsql-hackers |
Tom Lane wrote: > Alvaro Herrera <alvherre@commandprompt.com> writes: > > One thing to be aware of is /tmp cleaners ... > > ... but that would definitely be a problem. I think on most systems > you'd have to explicitly tweak the /tmp-cleaning script to know not to > zap such a link. Given that such a local customization would probably > disappear in your next system update, the security gain might be > fleeting. We could hack the postmaster so that it touches the /tmp socket (hardcoded path) in addition to the unix_socket_directory one. -- Alvaro Herrera http://www.CommandPrompt.com/ The PostgreSQL Company - Command Prompt, Inc.
В списке pgsql-hackers по дате отправления: