Document the idea of creating a symbolic link in /tmp to prevent server

author Bruce Momjian <bruce@momjian.us>

Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)

committer Bruce Momjian <bruce@momjian.us>

Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)
author Bruce Momjian <bruce@momjian.us>
Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)
committer Bruce Momjian <bruce@momjian.us>
Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)
diff --git a/doc/src/sgml/runtime.sgml b/doc/src/sgml/runtime.sgml

index 9fdcb3aa95a95756dfc3e3fbeda21fdad3d73e4d..f015133fb26601ee4988ef88ea93e2eba1bed694 100644 (file)
--- a/doc/src/sgml/runtime.sgml
+++ b/doc/src/sgml/runtime.sgml
@@ -1397,7 +1397,16 @@ $ <userinput>kill -INT `head -1 /usr/local/pgsql/data/postmaster.pid`</userinput
     connections is to use a Unix domain socket directory (<xref
     linkend="guc-unix-socket-directory">) that has write permission only
     for a trusted local user.  This prevents a malicious user from creating
-   their own socket file in that directory.  For TCP connections the server
+   their own socket file in that directory.  If you are concerned that
+   some applications might still look in <filename>/tmp</> for the
+   socket file and hence be vulnerable to spoofing, create a symbolic link
+   during operating system startup in <filename>/tmp</> that points to
+   the relocated socket file.  You also might need to modify your
+   <filename>/tmp</> cleanup script to preserve the symbolic link.
+  </para>
+
+  <para>
+   For TCP connections the server
     must accept only <literal>hostssl</> connections (<xref
     linkend="auth-pg-hba-conf">) and have SSL
     <filename>server.key</filename> (key) and
author	Bruce Momjian <bruce@momjian.us>
	Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)
committer	Bruce Momjian <bruce@momjian.us>
	Thu, 31 Jan 2008 17:22:43 +0000 (17:22 +0000)