Andrew Dunstan <and...@dunslane.net> writes: > On Tue, Mar 19, 2024 at 2:28 PM Magnus Hagander <mag...@hagander.net> wrote: >> Windows has had full ACL support since 1993. The easiest way to do >> what you're doing here is to just set a DENY permission on the >> postgres operating system user.
> Yeah. See < > https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/icacls> > for example. Cool. Maybe somebody should take a fresh look at the places where we're assuming Windows has nothing comparable to Unix permissions (for example, checking for world readability of ssl_key_file). It's off-topic for this thread though. regards, tom lane
