On 31.01.24 06:28, Tom Lane wrote:
>> The idea of adding a file to the data directory appeals to me.
>>
>> optional_runtime_features.conf
>> alter_system=enabled
>> copy_from_program=enabled
>> copy_to_program=disabled
> ... so, exactly what keeps an uncooperative superuser from
> overwriting that file?
The point of this feature would be to keep the honest people honest.
The first thing I did when ALTER SYSTEM came out however many years ago
was to install Nagios checks to warn when postgresql.auto.conf exists.
Because the thing is an attractive nuisance, especially when you want to
do centralized configuration control. Of course you can bypass it using
COPY PROGRAM etc., but then you *know* that you are *bypassing*
something. If you just see ALTER SYSTEM, you'll think, "that is
obviously the appropriate tool", and there is no generally accepted way
to communicate that, in particular environment, it might not be.
