The version of postgres included with whm is 7.3.4-3, which includes a directive/patch of sorts that prevents postgres users from 'accessing' databases that don't belong to them, controlled by the db_user_namespace parameter found in postgresql.conf. This parameter is poorly documented, and in my installation (via whm) the parameter is not active. The default is 'false' so that any user can 'access' any database on the server. My question regarding this parameter is should this be set to true? It would make sense, but then it would also make sense that the whm installer script would have set it so.