PostgreSQL is an open-source, powerful, and high-performance relational database management system. It is gaining popularity due to its robustness, flexibility, and performance. It is used as a database backend for several web, mobile, geospatial, and analytics applications. At the time of writing this article, PostgreSQL 14 is the latest version. This version comes with significant improvements to the indexing and lookup system that benefit large databases.
In this post, we will show you how to install and secure PostgreSQL on Oracle Linux 8.
Step 1 – Add PostgreSQL 14 Repository
By default, the latest version of PostgreSQL is not included in the Oracle Linux default repository. You can check all available versions in the AppStream repository using the following command:
dnf module list postgresql
You should see all PostgreSQL versions in the following output:
Last metadata expiration check: 0:19:12 ago on Wednesday 22 June 2022 11:49:00 AM EDT. Oracle Linux 8 Application Stream (x86_64) Name Stream Profiles Summary postgresql 9.6 client, server [d] PostgreSQL server and client module postgresql 10 [d] client, server [d] PostgreSQL server and client module postgresql 12 client, server [d] PostgreSQL server and client module postgresql 13 client, server [d] PostgreSQL server and client module Hint: [d]efault, [e]nabled, [x]disabled, [i]nstalled
In order to install the latest PostgreSQL version, you will need to install the PostgreSQL repo to your system.
You can install it using the following command:
dnf install https://download.postgresql.org/pub/repos/yum/reporpms/EL-8-x86_64/pgdg-redhat-repo-latest.noarch.rpm
Once the repo is created, you can proceed to the next step.
Step 2 – Install PostgreSQL 14 on Oracle Linux 8
First, update your repository using the following command:
dnf update -y
Next, disable the default PostgreSQL repo using the following command:
dnf -qy module disable postgresql
Next, install the latest version of PostgreSQL by running the following command:
dnf install postgresql14 postgresql14-server
Once PostgreSQL 14 is installed, you will get the following output:
Last metadata expiration check: 0:00:53 ago on Wednesday 22 June 2022 12:09:29 PM EDT. Dependencies resolved. ============================================================================================================================================== Package Architecture Version Repository Size ============================================================================================================================================== Installing: postgresql14 x86_64 14.4-1PGDG.rhel8 pgdg14 1.5 M postgresql14-server x86_64 14.4-1PGDG.rhel8 pgdg14 5.7 M Installing dependencies: lz4 x86_64 1.8.3-3.el8_4 ol8_baseos_latest 103 k postgresql14-libs x86_64 14.4-1PGDG.rhel8 pgdg14 276 k Transaction Summary ============================================================================================================================================== Install 4 Packages Total download size: 7.6 M Installed size: 32 M Is this ok [y/N]: y
Next, initialize the PostgreSQL database with the following command:
/usr/pgsql-14/bin/postgresql-14-setup initdb
Sample output:
Initializing database ... OK
Next, start the PostgreSQL service and enable it to start at system reboot with the following command:
systemctl start postgresql-14 systemctl enable postgresql-14
You can check the status of PostgreSQL with the following command:
systemctl status postgresql-14
You should get the following output:
● postgresql-14.service - PostgreSQL 14 database server
Loaded: loaded (/usr/lib/systemd/system/postgresql-14.service; disabled; vendor preset: disabled)
Active: active (running) since Wed 2022-06-22 12:11:16 EDT; 7s ago
Docs: https://www.postgresql.org/docs/14/static/
Process: 49700 ExecStartPre=/usr/pgsql-14/bin/postgresql-14-check-db-dir ${PGDATA} (code=exited, status=0/SUCCESS)
Main PID: 49705 (postmaster)
Tasks: 8 (limit: 23694)
Memory: 16.7M
CGroup: /system.slice/postgresql-14.service
├─49705 /usr/pgsql-14/bin/postmaster -D /var/lib/pgsql/14/data/
├─49707 postgres: logger
├─49709 postgres: checkpointer
├─49710 postgres: background writer
├─49711 postgres: walwriter
├─49712 postgres: autovacuum launcher
├─49713 postgres: stats collector
└─49714 postgres: logical replication launcher
Jun 22 12:11:16 oraclelinux8 systemd[1]: Starting PostgreSQL 14 database server...
By default, PostgreSQL listens on port 5432. You can check it with the following command:
ss -antpl | grep 5432
You will get the following output:
LISTEN 0 128 127.0.0.1:5432 0.0.0.0:* users:(("postmaster",pid=49705,fd=7))
LISTEN 0 128 [::1]:5432 [::]:* users:(("postmaster",pid=49705,fd=6))
Also Read
How to Backup and Restore PostgreSQL Database
Step 3 – Set a Password for Postgres User
By default, the password of the Postgres user is not set, so it is recommended to set a password for security reasons.
To set a password, log in to PostgreSQL with the following command:
su - postgres
Next, set a secure password with the following command:
psql -c "alter user postgres with password 'securepassword'"
Next, exit from the PostgreSQL shell using the following command:
exit
Step 4 – Change PostgreSQL Authentication Method
By default, PostgreSQL is configured to use the peer method to connect to PostgreSQL locally, but this method is not recommended for the production environment. It is recommended to change the authentication method from peer to scram-sha-256.
You can change it by editing the PostgreSQL main configuration file:
nano /var/lib/pgsql/14/data/pg_hba.conf
Find the following line:
local all all peer
And replace it with the following line:
local all all scram-sha-256
Save and close the file, then restart the PostgreSQL service to apply the changes:
systemctl restart postgresql-14
Step 5 – Create a Database and User in PostgreSQL
First, log in to the PostgreSQL shell with the following command:
sudo -u postgres psql
You will get the following output:
could not change directory to "/root": Permission denied psql (14.4) Type "help" for help. postgres=#
Next, create a new PostgreSQL user named testuser using the following command:
CREATE USER testuser WITH CREATEDB CREATEROLE PASSWORD 'passoword';
To verify the PostgreSQL users, run:
\du
You will get the following output:
List of roles
Role name | Attributes | Member of
-----------+------------------------------------------------------------+-----------
postgres | Superuser, Create role, Create DB, Replication, Bypass RLS | {}
testuser | Create role, Create DB | {}
To create a new PostgreSQL database named testdb, run:
CREATE DATABASE testdb OWNER testuser;
To verify the PostgreSQL databases, run:
\l
You will get the following output:
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges
-----------+----------+----------+-------------+-------------+-----------------------
postgres | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 |
template0 | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 | =c/postgres +
| | | | | postgres=CTc/postgres
template1 | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 | =c/postgres +
| | | | | postgres=CTc/postgres
testdb | testuser | UTF8 | en_US.UTF-8 | en_US.UTF-8 |
(4 rows)
Also Read
How to Use Ping Command in Linux
Conclusion
In this post, we explained how to install and use PostgreSQL on Oracle Linux 8. You can now use PostgreSQL as the primary data store for your web application. For security reasons, it is always recommended to install the latest version of PostgreSQL in the production environment. Try it on dedicated hosting from Atlantic.Net!
