Re: [HACKERS] TODO list updated

Bruce Momjian <pgman@candle.pha.pa.us>

From: Bruce Momjian <pgman@candle.pha.pa.us>
To: Peter Eisentraut <peter_e@gmx.net>
Cc: Tom Lane <tgl@sss.pgh.pa.us>, The Hermit Hacker <scrappy@hub.org>, PostgreSQL-development <pgsql-hackers@postgreSQL.org>
Date: 2000-01-13T13:36:01Z
Lists: pgsql-hackers
> On Thu, 13 Jan 2000, Bruce Momjian wrote:
> 
> > > What is does is some sort of sed s/genericpassword/realpassword/ so I
> > > guess this is not completely safe either. But something like this you'd
> > > have to do. Can I count you in on beating Bruce into submission for an
> > > initdb in C? ;)
> > 
> > I will be responsible to make sure the password doesn't get into a
> > command as an argument.  sed has a -f command that will take it's regex
> > input from a file.  That is the solution, though the umask has to be set
> > to make sure the temp file is not readable by anyone else.
> 
> That's one more file to find and to erase! Sounds very ugly to me. Better
> leave off this option altogether and user alter user. Can end users
> comment on this at all?

Huh.  Use trap and have it automatically removed on exit:

	trap "rm -f /tmp/pgpass.$$" 0 1 2 3 15

> 
> > Most OS vendors use shell scripts for this type of thing because it
> > doesn't have to be fast, and it is changed often.
> 
> So we can do it better! Also besides actual code changes (as recently),
> initdb itself hardly ever changes. When I get some time I'll develop a
> prototype to convince you. :)

OK.

-- 
  Bruce Momjian                        |  http://www.op.net/~candle
  maillist@candle.pha.pa.us            |  (610) 853-3000
  +  If your life is a hard drive,     |  830 Blythe Avenue
  +  Christ can be your backup.        |  Drexel Hill, Pennsylvania 19026