Postgres 8.4 Installation without additional user account
Posted: Tue Aug 10, 2010 4:43 am
Hi,
i've recently upgraded my pc and have decided to trial PT3. During installation of postgres 8.4 it creates an extra non administive account on my pc. As i am the only user i find it a pain having to log in to choose an account to log into.
found this on the postgreqls website...
Why do I need a non-administrator account to run PostgreSQL under?
When a hacker gains entry to a computer using a software bug in a package, she gains the permissions of the user account under which the service is run. Whilst we do not know of any such bugs in PostgreSQL, we enforce the use of a non-administrative service account to minimise the possible damage that a hacker could do should they find and utilise a bug in PostgreSQL to hack the system.
This has long been common practice in the Unix world, and is starting to become standard practice in the Windows world as well as Microsoft and other vendors work to improve the security of their systems.
Note, that with the release of PostgreSQL 8.2, it is possible to run under a administrative account. PostgreSQL 8.2 and above are able to irrevocably give up administrative rights at startup thus ensuring the rest of the system remains secure in the extremely unlikely event that PostgreSQL becomes compromised.
Does this mean there is no way i can run postgres without an additional windows account on my pc? Or is there a way to run from the administrator account that I am missing?
Thanks in advance
i've recently upgraded my pc and have decided to trial PT3. During installation of postgres 8.4 it creates an extra non administive account on my pc. As i am the only user i find it a pain having to log in to choose an account to log into.
found this on the postgreqls website...
Why do I need a non-administrator account to run PostgreSQL under?
When a hacker gains entry to a computer using a software bug in a package, she gains the permissions of the user account under which the service is run. Whilst we do not know of any such bugs in PostgreSQL, we enforce the use of a non-administrative service account to minimise the possible damage that a hacker could do should they find and utilise a bug in PostgreSQL to hack the system.
This has long been common practice in the Unix world, and is starting to become standard practice in the Windows world as well as Microsoft and other vendors work to improve the security of their systems.
Note, that with the release of PostgreSQL 8.2, it is possible to run under a administrative account. PostgreSQL 8.2 and above are able to irrevocably give up administrative rights at startup thus ensuring the rest of the system remains secure in the extremely unlikely event that PostgreSQL becomes compromised.
Does this mean there is no way i can run postgres without an additional windows account on my pc? Or is there a way to run from the administrator account that I am missing?
Thanks in advance