*
*
* IDENTIFICATION
- * $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.73 2001/07/03 16:49:48 tgl Exp $
+ * $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.74 2001/08/06 13:45:15 petere Exp $
*
*-------------------------------------------------------------------------
*/
SetDataDir(const char *dir)
{
char *new;
+ struct stat stat_buf;
AssertArg(dir);
if (!new)
elog(FATAL, "out of memory");
}
+
+ /*
+ * Check if the directory has group or world access. If so, reject.
+ */
+ if (stat(new, &stat_buf) == -1)
+ {
+ free(new);
+ elog(FATAL, "could not read permissions of directory %s: %s", new, strerror(errno));
+ }
+
+ if (stat_buf.st_mode & (S_IRWXG | S_IRWXO))
+ {
+ free(new);
+ elog(FATAL, "data directory %s has group or world access; permissions should be u=rwx (0700)", new);
+ }
if (DataDir)
free(DataDir);
*
* Copyright 2000 by PostgreSQL Global Development Group
*
- * $Header: /cvsroot/pgsql/src/backend/utils/misc/guc-file.l,v 1.8 2001/06/07 04:50:57 momjian Exp $
+ * $Header: /cvsroot/pgsql/src/backend/utils/misc/guc-file.l,v 1.9 2001/08/06 13:45:15 petere Exp $
*/
%{
int token, parse_state;
char *opt_name, *opt_value;
char *filename;
- struct stat stat_buf;
struct name_value_pair *item, *head, *tail;
int elevel;
FILE * fp;
return;
}
- /*
- * Check if the file is group or world writeable. If so, reject.
- */
- if (fstat(fileno(fp), &stat_buf) == -1)
- {
- FreeFile(fp);
- free(filename);
- elog(elevel, "could not stat configuration file `" CONFIG_FILENAME "': %s", strerror(errno));
- return;
- }
-
- if (stat_buf.st_mode & (S_IWGRP | S_IXGRP | S_IWOTH | S_IXOTH))
- {
- FreeFile(fp);
- free(filename);
- elog(elevel, "configuration file `" CONFIG_FILENAME "' has wrong permissions");
- return;
- }
-
/*
* Parse
*/
projects / postgresql / commitdiff