diff options
| author | Tom Lane <tgl@sss.pgh.pa.us> | 2010-07-16 22:25:51 +0000 |
|---|---|---|
| committer | Tom Lane <tgl@sss.pgh.pa.us> | 2010-07-16 22:25:51 +0000 |
| commit | 3ec694e17bc01cec4ae2000847f25e3d549888c0 (patch) | |
| tree | 1215875ecf4781a8c88d492d66a1ad4c4060c67f /doc/src | |
| parent | 6b0937cd58a8a777c53f7c1651e0b04cdf3f4784 (diff) | |
| download | postgresql-3ec694e17bc01cec4ae2000847f25e3d549888c0.tar.gz postgresql-3ec694e17bc01cec4ae2000847f25e3d549888c0.zip | |
Add a log_file_mode GUC that allows control of the file permissions set on
log files created by the syslogger process.
In passing, make unix_file_permissions display its value in octal, same
as log_file_mode now does.
Martin Pihlak
Diffstat (limited to 'doc/src')
| -rw-r--r-- | doc/src/sgml/config.sgml | 35 |
1 files changed, 34 insertions, 1 deletions
diff --git a/doc/src/sgml/config.sgml b/doc/src/sgml/config.sgml index 9890f9f6f4e..2a907f6e468 100644 --- a/doc/src/sgml/config.sgml +++ b/doc/src/sgml/config.sgml @@ -1,4 +1,4 @@ -<!-- $PostgreSQL: pgsql/doc/src/sgml/config.sgml,v 1.295 2010/07/16 11:20:23 heikki Exp $ --> +<!-- $PostgreSQL: pgsql/doc/src/sgml/config.sgml,v 1.296 2010/07/16 22:25:47 tgl Exp $ --> <chapter Id="runtime-config"> <title>Server Configuration</title> @@ -2844,6 +2844,39 @@ local0.* /var/log/postgresql </listitem> </varlistentry> + <varlistentry id="guc-log-file-mode" xreflabel="log_file_mode"> + <term><varname>log_file_mode</varname> (<type>integer</type>)</term> + <indexterm> + <primary><varname>log_file_mode</> configuration parameter</primary> + </indexterm> + <listitem> + <para> + On Unix systems this parameter sets the permissions for log files + when <varname>logging_collector</varname> is enabled. (On Microsoft + Windows this parameter is ignored.) + The parameter value is expected to be a numeric mode + specified in the format accepted by the + <function>chmod</function> and <function>umask</function> + system calls. (To use the customary octal format the number + must start with a <literal>0</literal> (zero).) + </para> + <para> + The default permissions are <literal>0600</>, meaning only the + server owner can read or write the log files. The other commonly + useful setting is <literal>0640</>, allowing members of the owner's + group to read the files. Note however that to make use of such a + setting, you'll need to alter <xref linkend="guc-log-directory"> to + store the files somewhere outside the cluster data directory. In + any case, it's unwise to make the log files world-readable, since + they might contain sensitive data. + </para> + <para> + This parameter can only be set in the <filename>postgresql.conf</> + file or on the server command line. + </para> + </listitem> + </varlistentry> + <varlistentry id="guc-log-rotation-age" xreflabel="log_rotation_age"> <term><varname>log_rotation_age</varname> (<type>integer</type>)</term> <indexterm> |