Problems with apache and postgres (already solved)

[ramin]

-BEGIN PGP SIGNED MESSAGE-

Hi!
Yesterday i upgraded some packages to Hamm frozen and has two problems. I don´t
 know if that where bugs or just my faults.
Anyway, i solved them and maybe this information can help others.
OK, here it goes: 
Number 1
Apache 1.3b5-2
I had to uncomment Port 80 in /etc/apache/httpd.conf. This was not nessary in
previous versions of apache as it was the default port for ServerType
standalone.

Number 2
postgesql 6.3-2
Dpkg could not config postgresql due to problems in initdb. I tried to run
initdb manually as user postgres from the postgres home dir /var/lib/postgres
but this didn´t work because initdb could not find other programs (pg_id and
postgres). After adding /usr/lib/postgresql/bin to PATH it worked. 
dpkg -configure worked also after that.

Question: Is there a security problem when giving the user postgres a shell?

Greetings,
Ramin  
 

- 

E-Mail: [EMAIL PROTECTED] Date: 23-Mar-98 Time: 14:38:32
- 


-BEGIN PGP SIGNATURE-
Version: 2.6.3ia
Charset: noconv

iQCVAwUBNRZs8PQ9+Dm4/+DZAQG5vgP+OgwHmLAGg1k5KxCNL15kbXced5rpLUGJ
epCrMmQ278syHpdCIQfpJ04/7vxewIR/fYE7G6KvfhqoMp8s5pTJupFLqrImKRmo
68I7NPmWGblONY1aNUPzBF3pjPq1G/t2uERNf4RvBvNyPSndZWiLAK3BUhs65/Fs
c/x9v4LqOuU=
=Lb/9
-END PGP SIGNATURE-


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: Problems with apache and postgres (already solved)

[Oliver Elphick]

[EMAIL PROTECTED] wrote:
  Number 2
  postgesql 6.3-2
  Dpkg could not config postgresql due to problems in initdb. I tried to run
  initdb manually as user postgres from the postgres home dir /var/lib/postgre
  s
  but this didn´t work because initdb could not find other programs (pg_id and
  postgres). After adding /usr/lib/postgresql/bin to PATH it worked. 
  dpkg -configure worked also after that.

In the next release I name the whole path in the `su - postgres -c initdb 
...'
statement.  The problem arises from the use of secure-su.

  
  Question: Is there a security problem when giving the user postgres a shell?

Since root is not allowed to modify a PostgreSQL database, it is necessary for
postgres to have a shell so that it is possible to run PostgreSQL
administrative commands.  Treat the postgres password with the same care
as you would the root password.  Alternatively, make it a no-login account
so that only root can get to it (by `su - postgres').

-- 
Oliver Elphick[EMAIL PROTECTED]
Isle of Wight  http://www.lfix.co.uk/oliver

PGP key from public servers; key ID 32B8FAA1



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]