Public bug reported:
A default PostgreSQL installation creates server.crt and server.key
symlinks in the datadir, referencing the default snakeoil SSL
certificate.
When making a filesystem level backup of the database using
pg_basebackup, these symlinks are not backed up and pg_basebackup emits
the following warnings:
WARNING: skipping special file "./server.crt"
WARNING: skipping special file "./server.key"
Recovering the filesystem level backup thus requires the extra platform
specific step of repairing the two missing files:
cd ~/9.1/main
ln -s /etc/ssl/certs/ssl-cert-snakeoil.pem .
ln -s /etc/ssl/private/ssl-cert-snakeoil.key .
To fix this, the locations of these files could be specified with the
ssl_cert_file and ssl_key_file options in postgresql.conf.
Alternatively, the files could be copied rather than symlinked. However,
the SSL certificate and private key should probably not be part of the
backup.
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: postgresql 9.1+140
ProcVersionSignature: Ubuntu 3.8.0-29.42-generic 3.8.13.5
Uname: Linux 3.8.0-29-generic x86_64
NonfreeKernelModules: nvidia
ApportVersion: 2.9.2-0ubuntu8.3
Architecture: amd64
Date: Thu Aug 29 15:40:03 2013
EcryptfsInUse: Yes
InstallationDate: Installed on 2013-02-26 (184 days ago)
InstallationMedia: Ubuntu 13.04 "Raring Ringtail" - Alpha amd64 (20130225)
MarkForUpload: True
PackageArchitecture: all
SourcePackage: postgresql-common
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: postgresql-common (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug raring
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to postgresql-common in Ubuntu.
https://bugs.launchpad.net/bugs/1218245
Title:
Default SSL certificates installed as symlinks and incompatible with
pg_basebackup
Status in “postgresql-common” package in Ubuntu:
New
Bug description:
A default PostgreSQL installation creates server.crt and server.key
symlinks in the datadir, referencing the default snakeoil SSL
certificate.
When making a filesystem level backup of the database using
pg_basebackup, these symlinks are not backed up and pg_basebackup
emits the following warnings:
WARNING: skipping special file "./server.crt"
WARNING: skipping special file "./server.key"
Recovering the filesystem level backup thus requires the extra
platform specific step of repairing the two missing files:
cd ~/9.1/main
ln -s /etc/ssl/certs/ssl-cert-snakeoil.pem .
ln -s /etc/ssl/private/ssl-cert-snakeoil.key .
To fix this, the locations of these files could be specified with the
ssl_cert_file and ssl_key_file options in postgresql.conf.
Alternatively, the files could be copied rather than symlinked.
However, the SSL certificate and private key should probably not be
part of the backup.
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: postgresql 9.1+140
ProcVersionSignature: Ubuntu 3.8.0-29.42-generic 3.8.13.5
Uname: Linux 3.8.0-29-generic x86_64
NonfreeKernelModules: nvidia
ApportVersion: 2.9.2-0ubuntu8.3
Architecture: amd64
Date: Thu Aug 29 15:40:03 2013
EcryptfsInUse: Yes
InstallationDate: Installed on 2013-02-26 (184 days ago)
InstallationMedia: Ubuntu 13.04 "Raring Ringtail" - Alpha amd64 (20130225)
MarkForUpload: True
PackageArchitecture: all
SourcePackage: postgresql-common
UpgradeStatus: No upgrade log present (probably fresh install)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/postgresql-common/+bug/1218245/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
