Re: log files and permissions
Stephen J. Butler <stephen.butler@gmail.com>
From: "Stephen J. Butler" <stephen.butler@gmail.com>
To: Michael Tharp <gxti@partiallystapled.com>
Cc: Kevin Grittner <Kevin.Grittner@wicourts.gov>, Martin Pihlak <martin.pihlak@gmail.com>, Tom Lane <tgl@sss.pgh.pa.us>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2010-07-01T18:06:33Z
Lists: pgsql-hackers
On Thu, Jul 1, 2010 at 12:19 PM, Michael Tharp <gxti@partiallystapled.com> wrote: > That said, as Martin mentions one can easily place the log directory outside > of the data directory and set appropriate directory permissions. If I can offer my $0.02, I recently solved such a problem on SuSE Linux with apache logs. I used the ACL support on ext3 to give a specific group read-only access: cd /var/log # Add an ACL for the 'www' user setfacl -m u:www:r-x apache2 setfacl -m u:www:r-- apache2/* # Modify the default ACL so that new files get 'r' for user setfacl -d -m u:www:r-- apache2 Just pointing out that this problem is solvable on systems that support ACLs w/o patching postgres.