diff options
| author | Peter Eisentraut <peter_e@gmx.net> | 2001-08-06 13:45:15 +0000 |
|---|---|---|
| committer | Peter Eisentraut <peter_e@gmx.net> | 2001-08-06 13:45:15 +0000 |
| commit | f487e3da681c3452e20e189a6613174ce81ed7ec (patch) | |
| tree | 194ec7e617c81ef39c595106272b67a566b8e13b /src/backend/utils/init/miscinit.c | |
| parent | 46e252141bbeef790db4a09c97e388e350310e68 (diff) | |
| download | postgresql-f487e3da681c3452e20e189a6613174ce81ed7ec.tar.gz postgresql-f487e3da681c3452e20e189a6613174ce81ed7ec.zip | |
Check that the data directory does not have group or world access; remove
a similar check on postgresql.conf.
Diffstat (limited to 'src/backend/utils/init/miscinit.c')
| -rw-r--r-- | src/backend/utils/init/miscinit.c | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/src/backend/utils/init/miscinit.c b/src/backend/utils/init/miscinit.c index 44e6f768152..99fc6824c60 100644 --- a/src/backend/utils/init/miscinit.c +++ b/src/backend/utils/init/miscinit.c @@ -8,7 +8,7 @@ * * * IDENTIFICATION - * $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.73 2001/07/03 16:49:48 tgl Exp $ + * $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.74 2001/08/06 13:45:15 petere Exp $ * *------------------------------------------------------------------------- */ @@ -120,6 +120,7 @@ void SetDataDir(const char *dir) { char *new; + struct stat stat_buf; AssertArg(dir); @@ -162,6 +163,21 @@ SetDataDir(const char *dir) if (!new) elog(FATAL, "out of memory"); } + + /* + * Check if the directory has group or world access. If so, reject. + */ + if (stat(new, &stat_buf) == -1) + { + free(new); + elog(FATAL, "could not read permissions of directory %s: %s", new, strerror(errno)); + } + + if (stat_buf.st_mode & (S_IRWXG | S_IRWXO)) + { + free(new); + elog(FATAL, "data directory %s has group or world access; permissions should be u=rwx (0700)", new); + } if (DataDir) free(DataDir); |