Обсуждение: BUG #10446: start fails: data has group access

The following bug has been logged on the website:

Bug reference:      10446
Logged by:          eike
Email address:      eike@snafu.de
PostgreSQL version: 9.2.5
Operating system:   2.6.18-028stab101.1 @ virtuozzo@2.6.0
Description:

GMTFATAL:  data directory "/srv/pgsql/data" has group or world access
GMTDETAIL:  Permissions should be u=rwx (0700).

I fully understand that there must have been a lot of discussions
about this permission restriction.
And probably this is the way to go for a good reason.

I was not aware of that and did set
    rwxr-x--- postgres postgres
(and made me member of the postgres group, so that I could have a look at
the config without su)

It failed on reboot.
postgres would not start.

This was a bit unexpected, since it did work fine with these permissions.

Is there a config option for this already?
(but this would open up a hole)

eike@snafu.de writes:
> GMTFATAL:  data directory "/srv/pgsql/data" has group or world access
> GMTDETAIL:  Permissions should be u=rwx (0700).

> I fully understand that there must have been a lot of discussions
> about this permission restriction.

Yup.

> I was not aware of that and did set
>     rwxr-x--- postgres postgres
> (and made me member of the postgres group, so that I could have a look at
> the config without su)

As far as configuration is concerned, you could consider keeping the
config files somewhere else; that's a supported arrangement.

> Is there a config option for this already?

There is not, and there will not be one in future.

            regards, tom lane