Return-Path: postarch
Received: by postgres.Berkeley.EDU (5.61/1.29)
	id AA11997; Tue, 5 May 92 22:33:36 -0700
Message-Id: <9205060533.AA11997@postgres.Berkeley.EDU>
From: postarch (Postgres Mailing Archive)
Subject: Re: Using Postgres from Unix and security
To: postgres@postgres.berkeley.edu
Sender: pg_adm@postgres.berkeley.edu
Reply-To: mer@postgres.berkeley.edu
In-Reply-To: Your message of "Tue, 05 May 92 16:31:05 +0200."
             <9205051431.AA01620@postgres.Berkeley.EDU> 
Date: Tue, 05 May 92 22:33:24 PDT

you write:
> I have been reading the reference manual section
> Information(unix) under the heading "Using Postgres From Unix"
> where it says  "A Unix user can do nothing at all with POSTGRES 
> until an appropriate record is installed in this system catalog class."
> I took this to mean that nobody (other than the account postgres)
> can use postgres until I run "createuser".  Is this correct?

This is the intended behavior.

> I have compiled and installed postgres, run initdb, launched a
> postmaster, and created a database called foo.  I have not run createuser.
> I find that any user can run "/usr/postgres/bin/monitor foo" and change
> the contents of the database foo.  This behaviour does not seem to agree
> with the documentation cited above.  Am I confused?

No, this isn't supposed to happen.  What machine do you use?


Jeff Meredith
mer@postgres.berkeley.edu