More FreeBSD jail wording improvements.

This commit is contained in:
Bruce Momjian 2006-04-11 19:45:33 +00:00
parent cc7b6c75e3
commit 7626181bf7

View File

@ -1,4 +1,4 @@
<!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.368 2006/04/11 19:42:27 momjian Exp $ --> <!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.369 2006/04/11 19:45:33 momjian Exp $ -->
<chapter Id="runtime"> <chapter Id="runtime">
<title>Operating System Environment</title> <title>Operating System Environment</title>
@ -768,8 +768,8 @@ options "SEMMNS=240"
<literal>security.jail.sysvipc_allowed</>, <application>postmaster</>s <literal>security.jail.sysvipc_allowed</>, <application>postmaster</>s
running in different jails should be run by different operating system running in different jails should be run by different operating system
users. This improves security because it prevents non-root users users. This improves security because it prevents non-root users
from interfering with shared memory or semaphores in different jail, and it from interfering with shared memory or semaphores in a different jail,
allows the PostgreSQL IPC cleanup code to function properly. and it allows the PostgreSQL IPC cleanup code to function properly.
(In FreeBSD 6.0 and later the IPC cleanup code doesn't properly detect (In FreeBSD 6.0 and later the IPC cleanup code doesn't properly detect
processes in other jails, preventing the running of postmasters on the processes in other jails, preventing the running of postmasters on the
same port in different jails.) same port in different jails.)