发表新帖
发表新帖

PostgreSQL won't start: “server.key” has group or world access

后端 未结
关注
6 1680
时光取名叫无心
时光取名叫无心 2021-01-30 09:32

Whenerver I start PostgreSQL using command: 

$ sudo /etc/init.d/postgresql start

Pg doesn\'t start up. The error reported is:
相关标签:
6条回答
  • 抹茶落季
    2021-01-30 09:44

    How about not to hard copying the Server Key and leaving it where and like it is.

    Instead it is simplier to:

    Change the "server.key" link Permissions in PostgreSQL Data Directory (its the Location where the Link to the private certificate.key File resides)

    # cd /var/lib/postgresql/9.1/main/

    to

    # chown -R postgres:postgres server.key`

    And make sure that the original Certificate in

    # /etc/ssl/private/ssl-cert-snakeoil.key

    has those Properties, by Setting them 

    # chmod 640 ssl-cert-snakeoil.key
# chown root:ssl-cert ssl-cert-snakeoil.key

    This Solution has been tested on Debian. Please remember that CentOS can use the SELinux with extended User Rights Management, which can be viewed by 

    # ls -laZ *
    0 讨论(0)
  • [愿得一人]
    2021-01-30 09:44

    It happened to me and it turned out that I removed erroneously the postgres user from "ssl-cert" group, set it back with

    gpasswd -a postgres ssl-cert

    0 讨论(0)
  • 故里飘歌
    2021-01-30 09:46

    As the error message says, fix the permissions for the key file server.key. The server runs as user "postgres" which should own the file. Try 

    #cd <path/to/pgsql/data> 
#chown postgres server.key
#chmod 0640 server.key
    0 讨论(0)
  • 醉酒成梦
    2021-01-30 10:00

    I had solved it using ..

    1) Enter the relevant directory (use> locate server.key)

    2) Back up old server.key link.

    3) Copy ssl-cert-snakeoil.key to server.key

    4-5) Change its owner & group to postgres

    6) Ensure the permissions are 700 or 740 (as requested by error message)

    Recipe for my Ubuntu 12.04 & postgresql-8.3:

    sudo cd /var/lib/postgresql/8.3/main/
sudo mv server.key server.key-0
sudo cp /etc/ssl/private/ssl-cert-snakeoil.key server.key
sudo chown postgres server.key
sudo chgrp postgres server.key
sudo chmod 740 server.key
sudo /etc/init.d/postgres-8.3 start

    And now its working ! Thanks for support.

    0 讨论(0)
  • 遥遥无期
    2021-01-30 10:00

    Setthe permissions of /etc/ssl/private to root:ssl-cert. Comments on this issue made me try this solution.

    NOTE: even tough the answer is accepted, it didn't solve my issue. To help someone else i wanted to answer here.

    0 讨论(0)
  • 难免孤独
    2021-01-30 10:01 
    sudo chown postgres /var/lib/postgresql/8.4/main/server.key

sudo chmod 0640 /var/lib/postgresql/8.4/main/server.key

    Hit tab after postgresql to confirm your version.

    0 讨论(0)
 看不清?
提交回复
热议问题