File 0003-var-run-postgresql.patch of Package permissions
commit 72c8edfb57b9e3e90f3a3e9a7a4fcc98e7e35590
Author: Johannes Segitz <jsegitz@suse.com>
Date: Wed Feb 13 15:37:33 2019 +0100
Whitelist for postgresql. Currently the checker doesn't complain
because the directories aren't packaged, but that might change
and/or our checkers might improve
Index: permissions-20181116/permissions.easy
===================================================================
--- permissions-20181116.orig/permissions.easy 2019-02-13 15:42:21.502773734 +0100
+++ permissions-20181116/permissions.easy 2019-02-13 15:42:21.510773862 +0100
@@ -245,6 +245,11 @@
/usr/lib/amanda/dumper root:amanda 4750
/usr/lib/amanda/killpgrp root:amanda 4750
+# postgresql (bsc#1123886)
+# This is for older products (<=15.1), in Factory we use better settings. Don't
+# port this master
+/run/postgresql root:root 1777
+/var/run/postgresql root:root 1777
#
# gnats
Index: permissions-20181116/permissions.paranoid
===================================================================
--- permissions-20181116.orig/permissions.paranoid 2019-02-13 15:42:21.502773734 +0100
+++ permissions-20181116/permissions.paranoid 2019-02-13 15:42:21.510773862 +0100
@@ -254,6 +254,11 @@
/usr/lib/amanda/dumper root:amanda 0750
/usr/lib/amanda/killpgrp root:amanda 0750
+# postgresql (bsc#1123886)
+# This is for older products (<=15.1), in Factory we use better settings. Don't
+# port this master
+/run/postgresql postgres:postgres 0750
+/var/run/postgresql postgres:postgres 0750
#
# gnats
Index: permissions-20181116/permissions.secure
===================================================================
--- permissions-20181116.orig/permissions.secure 2019-02-13 15:42:21.502773734 +0100
+++ permissions-20181116/permissions.secure 2019-02-13 15:42:21.510773862 +0100
@@ -283,6 +283,11 @@
/usr/lib/amanda/dumper root:amanda 0750
/usr/lib/amanda/killpgrp root:amanda 0750
+# postgresql (bsc#1123886)
+# This is for older products (<=15.1), in Factory we use better settings. Don't
+# port this master
+/run/postgresql root:root 1777
+/var/run/postgresql root:root 1777
#
# gnats