Sophie

Sophie

distrib > Mandriva > 2008.1 > x86_64 > media > main-testing > by-pkgid > bab02a23fa9f3df8d66a9a3231b50245 > files > 441

postgresql8.3-docs-8.3.6-2mdv2008.1.x86_64.rpm

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML
><HEAD
><TITLE
>Preventing Server Spoofing</TITLE
><META
NAME="GENERATOR"
CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
REV="MADE"
HREF="mailto:pgsql-docs@postgresql.org"><LINK
REL="HOME"
TITLE="PostgreSQL 8.3.6 Documentation"
HREF="index.html"><LINK
REL="UP"
TITLE="Operating System Environment"
HREF="runtime.html"><LINK
REL="PREVIOUS"
TITLE="Shutting Down the Server"
HREF="server-shutdown.html"><LINK
REL="NEXT"
TITLE="Encryption Options"
HREF="encryption-options.html"><LINK
REL="STYLESHEET"
TYPE="text/css"
HREF="stylesheet.css"><META
HTTP-EQUIV="Content-Type"
CONTENT="text/html; charset=ISO-8859-1"><META
NAME="creation"
CONTENT="2009-02-03T04:34:16"></HEAD
><BODY
CLASS="SECT1"
><DIV
CLASS="NAVHEADER"
><TABLE
SUMMARY="Header navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TH
COLSPAN="5"
ALIGN="center"
VALIGN="bottom"
>PostgreSQL 8.3.6 Documentation</TH
></TR
><TR
><TD
WIDTH="10%"
ALIGN="left"
VALIGN="top"
><A
HREF="server-shutdown.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="10%"
ALIGN="left"
VALIGN="top"
><A
HREF="runtime.html"
>Fast Backward</A
></TD
><TD
WIDTH="60%"
ALIGN="center"
VALIGN="bottom"
>Chapter 17. Operating System Environment</TD
><TD
WIDTH="10%"
ALIGN="right"
VALIGN="top"
><A
HREF="runtime.html"
>Fast Forward</A
></TD
><TD
WIDTH="10%"
ALIGN="right"
VALIGN="top"
><A
HREF="encryption-options.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
></TABLE
><HR
ALIGN="LEFT"
WIDTH="100%"></DIV
><DIV
CLASS="SECT1"
><H1
CLASS="SECT1"
><A
NAME="PREVENTING-SERVER-SPOOFING"
>17.6. Preventing Server Spoofing</A
></H1
><A
NAME="AEN22313"
></A
><P
>   While the server is running, it is not possible for a malicious user
   to interfere with client/server communications.  However, when the
   server is down it is possible for a local user to spoof the normal
   server by starting their own server.  The spoof server could read
   passwords and queries sent by clients, but could not return any data
   because the <TT
CLASS="VARNAME"
>PGDATA</TT
> directory would still be secure because
   of directory permissions. Spoofing is possible because any user can
   start a database server; a client cannot identify an invalid server
   unless it is specially configured.
  </P
><P
>   The simplest way to prevent invalid servers for <TT
CLASS="LITERAL"
>local</TT
>
   connections is to use a Unix domain socket directory (<A
HREF="runtime-config-connection.html#GUC-UNIX-SOCKET-DIRECTORY"
>unix_socket_directory</A
>) that has write permission only
   for a trusted local user.  This prevents a malicious user from creating
   their own socket file in that directory.  If you are concerned that
   some applications might still reference <TT
CLASS="FILENAME"
>/tmp</TT
> for the
   socket file and hence be vulnerable to spoofing, during operating system
   startup create symbolic link <TT
CLASS="FILENAME"
>/tmp/.s.PGSQL.5432</TT
> that points
   to the relocated socket file.  You also might need to modify your
   <TT
CLASS="FILENAME"
>/tmp</TT
> cleanup script to preserve the symbolic link.
  </P
><P
>   For TCP connections the server
   must accept only <TT
CLASS="LITERAL"
>hostssl</TT
> connections (<A
HREF="auth-pg-hba-conf.html"
>Section 21.1</A
>) and have SSL
   <TT
CLASS="FILENAME"
>server.key</TT
> (key) and
   <TT
CLASS="FILENAME"
>server.crt</TT
> (certificate) files (<A
HREF="ssl-tcp.html"
>Section 17.8</A
>). The TCP client must connect using
   <TT
CLASS="LITERAL"
>sslmode='require'</TT
> (<A
HREF="libpq-connect.html"
>Section 30.1</A
>) and have
   a <TT
CLASS="FILENAME"
>~/.postgresql/root.crt</TT
> SSL certificate (<A
HREF="libpq-ssl.html"
>Section 30.16</A
>).
  </P
></DIV
><DIV
CLASS="NAVFOOTER"
><HR
ALIGN="LEFT"
WIDTH="100%"><TABLE
SUMMARY="Footer navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><A
HREF="server-shutdown.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="index.html"
ACCESSKEY="H"
>Home</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><A
HREF="encryption-options.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
>Shutting Down the Server</TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="runtime.html"
ACCESSKEY="U"
>Up</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
>Encryption Options</TD
></TR
></TABLE
></DIV
></BODY
></HTML
>

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional