On Wed, 2010-06-30 at 16:13 -0400, Maria L. Wilson wrote:
> and what would be those "extremely specific purposes"?
Needed to modify files that are within the cluster directory
(postgresql.conf) or needing to stop/start PostgreSQL which could be
done with sudo without allowing login.
Sincerely,
J
"Maria L. Wilson" wrote:
> What we are planning on doing with the OS acct (postgres) is only
> allowing users sudo ability to this account. Nobody should be
> able to directly log into it. Do you think that will cause
> problems?
It's what we do. We use ident logins from this account, and u
El mié, 30-06-2010 a las 16:15 -0400, Maria L. Wilson escribió:
> that sounds similar to what we are trying to accomplish. Looks like
> what we need to do is use the sudo at the OS level - and remove the
> postgres db user account altogether giving specific users the privs
> (or create r
"Maria L. Wilson" writes:
> that sounds similar to what we are trying to accomplish. Looks like
> what we need to do is use the sudo at the OS level - and remove the
> postgres db user account altogether giving specific users the privs
> (or create roles) that accomplish what they need.
and what would be those "extremely specific purposes"?
Joshua D. Drake wrote:
On Wed, 2010-06-30 at 16:02 -0400, Maria L. Wilson wrote:
ok - thanks that makes sense
so what about the operating system account that is different? What we
are planning on doing with the OS acct (postgres)
"Maria L. Wilson" writes:
> so what about the operating system account that is different? What we
> are planning on doing with the OS acct (postgres) is only allowing users
> sudo ability to this account. Nobody should be able to directly log
> into it. Do you think that will cause problems?
: Wednesday, June 30, 2010 3:03 PM
To: Plugge, Joe R.
Cc: Wilson, Maria Louise (LARC-E301)[SCIENCE SYSTEMS APPLICATIONS];
[email protected]
Subject: Re: [ADMIN] postgres database user account
ok - thanks that makes sense
so what about the operating system account that is different? What we
]
Sent: Wednesday, June 30, 2010 3:03 PM
To: Plugge, Joe R.
Cc: Wilson, Maria Louise (LARC-E301)[SCIENCE SYSTEMS APPLICATIONS];
[email protected]
Subject: Re: [ADMIN] postgres database user account
ok - thanks that makes sense
so what about the operating system account that is different
On Wed, 2010-06-30 at 16:02 -0400, Maria L. Wilson wrote:
> ok - thanks that makes sense
>
> so what about the operating system account that is different? What we
> are planning on doing with the OS acct (postgres) is only allowing users
> sudo ability to this account. Nobody should be abl
ok - thanks that makes sense
so what about the operating system account that is different? What we
are planning on doing with the OS acct (postgres) is only allowing users
sudo ability to this account. Nobody should be able to directly log
into it. Do you think that will cause problems?
Yes, you can create a role that is a superuser that should be able to do
internal work:
CREATE ROLE myuser;
ALTER ROLE myuser WITH SUPERUSER INHERIT CREATEROLE CREATEDB LOGIN PASSWORD
'mypassword' VALID UNTIL 'infinity';
If you are talking about the operating system account named postgres, then
11 matches
Mail list logo
