Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

Bogus error message about private key (not a bug).

2 views

Skip to first unread message

Stefanos Harhalakis

unread,

Nov 13, 2004, 6:47:26 AM11/13/04

Hi there,

PostgreSQL 7.4.6 gives the following error message when trying to read the
private key in the case of:

-rw------- 1 root root 887 Aug 19 15:01 /var/lib/postgres/data/server.key

2004-11-13 13:04:42 [4095] FATAL: unsafe permissions on private key file
"/var/lib/postgres/data/server.key"
DETAIL: File must be owned by the database user and must have no permissions
for "group" or "other".

I believe that the checks in src/backend/libpq/be-secure.c:653 should be
performed in a different order (first the access permissions and then the
owner of the key) just to give a more appropriate message.

Thanks in advance,

<<V13>>

Tom Lane

unread,

Nov 16, 2004, 2:06:01 PM11/16/04

Stefanos Harhalakis <v...@priest.com> writes:
> I believe that the checks in src/backend/libpq/be-secure.c:653 should be
> performed in a different order (first the access permissions and then the
> owner of the key) just to give a more appropriate message.

Changing the order of the tests wouldn't change the message, though,
'cause there's just one message. Are you suggesting more than one
message? Not sure it's worth the trouble ...

regards, tom lane

---------------------------(end of broadcast)---------------------------
TIP 3: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to majo...@postgresql.org so that your
message can get through to the mailing list cleanly

0 new messages