Neil Conway wrote:
> Ian FREISLICH wrote:
> > I'm not sure if you've done this for a later version of pg_autovacuum.
> > I'm using what came with postgres-7.4.6.  For database security on
> > a shared server (~800 logins) it's best to set the superuser password
> > and not allow passwordless connections.  The only thing is that
> > pg_autovacuum keeps the password supplied on the commandline so
> > anyone that does a 'ps' can get the database superuser password.
> 
> Is this portable? Considering the hoops that 
> backend/utils/misc/ps_status.c jumps through to do something similar for 
> the postmaster, I would guess not.
> 
> BTW, I would suggest using ~/.pgpass, as that should be secure on all 
> platforms.

I have no idea.  It works on FreeBSD and Linux which are the two
platform I have access to.

Does pg_autovacuum use ~/.pgpass?

Ian

--
Ian Freislich

---------------------------(end of broadcast)---------------------------
TIP 4: Don't 'kill -9' the postmaster

Reply via email to