Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Commitd924944

Browse files
committed
Mark ssl_passphrase_command as GUC_SUPERUSER_ONLY.
This commit changes the GUC ssl_passphrase_command so thatit's examinable by only superuser and a member of pg_read_all_settings.Per discussion, we determined to do this because the parameter maycontain a sensitive informtaion like a passphrase itself.Author: Insung MoonReviewed-by: Keisuke KurodaDiscussion:https://postgr.es/m/CAEMmqBuHVGayc+QkYKgx3gWSdqwTAQGw+0DYn3WhcX-eNa2ntA@mail.gmail.com
1 parent5aaa584 commitd924944

File tree

1 file changed

+2
-1
lines changed
  • src/backend/utils/misc

1 file changed

+2
-1
lines changed

‎src/backend/utils/misc/guc.c

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4268,7 +4268,8 @@ static struct config_string ConfigureNamesString[] =
42684268
{
42694269
{"ssl_passphrase_command",PGC_SIGHUP,CONN_AUTH_SSL,
42704270
gettext_noop("Command to obtain passphrases for SSL."),
4271-
NULL
4271+
NULL,
4272+
GUC_SUPERUSER_ONLY
42724273
},
42734274
&ssl_passphrase_command,
42744275
"",

0 commit comments

Comments
 (0)
[8]ページ先頭
©2009-2025 Movatter.jp