I've noticed that if I just log in to my server, I don't su to root, or become the postgres user, I can get straight into the database as the postgres user merely with "psql -U postgres -h localhost". My user account isn't a member of the postgres group. It appears I've not applied my security settings correctly. What can I do to prevent access this way? I'd still want to be able to su to the postgres user and log in that way, but not with the -U parameter allowing access. The pg_hba.conf is probably relevant here, so this is the setup: # TYPE DATABASE USER CIDR-ADDRESS METHOD # "local" is for Unix domain socket connections only local all all trust # IPv4 local connections: host all all 127.0.0.1/32 trust # IPv6 local connections: host all all ::1/128 trust Thanks Thom Brown Crawley, UK -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
