Bruce Momjian <pgman@candle.pha.pa.us> writes:
> Tom Lane wrote:
>> Is SELinux in enforcement mode, and if so does turning it off change
>> things?
> Should we check for a buggy SELinux and report a meaningful error
> message on failure?
How you intend to do that, exactly? The bug is that it won't let you
write on /dev/tty, which puts a pretty severe crimp on *any* reporting.
(This is not as insane as it sounds: it's a reasonable security
restriction for a daemon process. The error in older SELinux policy
files is that they think all the Postgres executables are daemons, not
only the postmaster.)
regards, tom lane
---------------------------(end of broadcast)---------------------------
TIP 8: explain analyze is your friend
