Date: Fri, 12 Sep 2003 19:55:30 -0400 (EDT) From: alexander v p <alex@big-blue.net> To: Kirk Strauser <kirk@strauser.com> Cc: freebsd-questions@freebsd.org Subject: Re: Trying to secure PostgreSQL Message-ID: <Pine.BSF.4.21.0309121951180.10074-100000@localhost> In-Reply-To: <87ad99bohs.fsf@strauser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
story short: su -l postgres -c "/usr/local/pgsql/bin/postmaster -o -i -D /usr/local/pgsql/data -s &" in the /etc/rc.local and it will start postgres w/o asking for password. now, be carefull and read ( man postmaster) about switches. if you need more help, please let us know. if it works let us know also :-). i'll go to dig up some more info about config files in /data. $0.02 alex On Fri, 12 Sep 2003, Kirk Strauser wrote: > At 2003-09-12T22:36:43Z, alexander v p <alex@big-blue.net> writes: > > > look in /usr/local/pgsql/data/pg_hba.conf > > by default is: > > > > local all all trust > > host all all 127.0.0.1 255.255.255.255 trust > > > > what you have to do is to change trust into password or md5 > > hope that helps > > alex > > p.s. restart postgres after you change the conf file. > > But when I do that, I'm prompted to enter the password for 'pgsql' whenever > I start the service. That's pretty inconvenient when it's part of the boot > process; the system would be effectively hung until I accessed the box, > entered the password, and let the init sequence finish. > > I'd read of people coming up with a mechanism to pipe a password from some > (hopefully) secure file on the system into the password prompt. Is that > really the best way to handle this? > -- > Kirk Strauser >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0309121951180.10074-100000>