210938 2008-02-21 03:16 0000 dev-db/postgresql - disable strict permission check on ssl key files 2008-06-07 20:35:12 0000 1 1 1 Unclassified Gentoo Linux Server unspecified All Linux RESOLVED FIXED http://archives.postgresql.org/pgsql-bugs/2007-12/msg00082.php P2 enhancement --- 1 rjenster@eiszeit.blogdns.net pgsql-bugs@gentoo.org rjenster@eiszeit.blogdns.net 2008-02-21 03:16:32 0000 Hi, please include the following patch that disables the strict permission check on the ssl key files for postgresql. This patch makes it possible to securely share an ssl key between apache/openvpn/ldap and postgres without the need of duplicating it. See http://archives.postgresql.org/pgsql-bugs/2007-12/msg00082.php for further information. Regards, Ruben Reproducible: Always rjenster@eiszeit.blogdns.net 2008-02-21 03:17:15 0000 Created an attachment (id=144173) 07-relax-sslkey-permscheck.patch rjenster@eiszeit.blogdns.net 2008-02-21 03:22:45 0000 Created an attachment (id=144175) patch for postgresql-8.0.15.ebuild patch for postgresql-8.0.15.ebuild that applies 07-relax-sslkey-permscheck.patch dev-zero@gentoo.org 2008-06-07 20:35:12 0000 Done dev-db/postgresql-base. Thanks! 144173 2008-02-21 03:17 0000 07-relax-sslkey-permscheck.patch 07-relax-sslkey-permscheck.patch text/plain ZGlmZiAtdXIgcG9zdGdyZXNxbC04LjAuMTUub3JpZy9zcmMvYmFja2VuZC9saWJwcS9iZS1zZWN1 cmUuYyBwb3N0Z3Jlc3FsLTguMC4xNS9zcmMvYmFja2VuZC9saWJwcS9iZS1zZWN1cmUuYwotLS0g cG9zdGdyZXNxbC04LjAuMTUub3JpZy9zcmMvYmFja2VuZC9saWJwcS9iZS1zZWN1cmUuYwkyMDA4 LTAyLTIxIDA0OjA2OjA0LjMzNDI4OTIwMyArMDEwMAorKysgcG9zdGdyZXNxbC04LjAuMTUvc3Jj L2JhY2tlbmQvbGlicHEvYmUtc2VjdXJlLmMJMjAwOC0wMi0yMSAwNDowODo0Ny4zMDk0MjYzMjQg KzAxMDAKQEAgLTczNyw4ICs3MzcsOCBAQAogCQkgKiBkYXRhIGRpcmVjdG9yeSBwZXJtaXNzaW9u IGNoZWNrIGluIHBvc3RtYXN0ZXIuYykKIAkJICovCiAjaWYgIWRlZmluZWQoV0lOMzIpICYmICFk ZWZpbmVkKF9fQ1lHV0lOX18pCi0JCWlmICghU19JU1JFRyhidWYuc3RfbW9kZSkgfHwgKGJ1Zi5z dF9tb2RlICYgKFNfSVJXWEcgfCBTX0lSV1hPKSkgfHwKLQkJCWJ1Zi5zdF91aWQgIT0gZ2V0ZXVp ZCgpKQorCQlpZiAoIVNfSVNSRUcoYnVmLnN0X21vZGUpIHx8IChidWYuc3RfbW9kZSAmIChTX0lX R1JQIHwgU19JUldYTykpIHx8CisJCQkoYnVmLnN0X3VpZCAhPSBnZXRldWlkKCkpICYmIGJ1Zi5z dF91aWQgIT0gMCkKIAkJCWVyZXBvcnQoRkFUQUwsCiAJCQkJCShlcnJjb2RlKEVSUkNPREVfQ09O RklHX0ZJTEVfRVJST1IpLAogCQkJCSAgZXJybXNnKCJ1bnNhZmUgcGVybWlzc2lvbnMgb24gcHJp dmF0ZSBrZXkgZmlsZSBcIiVzXCIiLAo= 144175 2008-02-21 03:22 0000 patch for postgresql-8.0.15.ebuild postgresql-8.0.15.ebuild.patch text/plain LS0tIC91c3IvcG9ydGFnZS9kZXYtZGIvcG9zdGdyZXNxbC9wb3N0Z3Jlc3FsLTguMC4xNS5lYnVp bGQJMjAwOC0wMS0yMSAxMjowNTo1Mi4wMDAwMDAwMDAgKzAxMDAKKysrIC9ob21lL3BvcnRhZ2Uv b3ZlcmxheS9kZXYtZGIvcG9zdGdyZXNxbC9wb3N0Z3Jlc3FsLTguMC4xNS5lYnVpbGQJMjAwOC0w Mi0yMSAwNDowNDozMy4wMDAwMDAwMDAgKzAxMDAKQEAgLTg1LDYgKzg1LDkgQEAKIAlzZWQgLWkg LWUgJy9eXFdcK3BzcWwgc2NyaXB0cyBwZ19jb25maWcgcGdfY29udHJvbGRhdGEvIHMvcGdfY29u ZmlnIC8vJyBzcmMvYmluL01ha2VmaWxlCiAKIAllcGF0Y2ggIiR7RklMRVNESVJ9LyR7UH0tc2gu cGF0Y2giCisJIyBkaXNhYmxlIHJlc3RyaWN0aXZlIHBlcm1pc3Npb24gY2hlY2sgZm9yIHNzbCBr ZXkKKwkjIHNlZSBkaXNjdXNzaW9uIGF0ICBodHRwOi8vYXJjaGl2ZXMucG9zdGdyZXNxbC5vcmcv cGdzcWwtYnVncy8yMDA3LTEyL21zZzAwMDgyLnBocAorCWVwYXRjaCAiJHtGSUxFU0RJUn0vMDct cmVsYXgtc3Nsa2V5LXBlcm1zY2hlY2sucGF0Y2giCiAKIAkjIFByZXBhcmUgcGFja2FnZSBmb3Ig ZnV0dXJlIHRlc3RzCiAJaWYgdXNlIHRlc3QgOyB0aGVuCg==