Perhaps the postgres people should write a canonical reply to that question, post it on their site (where its semi-authoritative nature will be apparent), and then do the googling you did so that they can reply to such questions by saying "A secure solution is now documented <u>here</u> and an insecure one will lead to your database being read and possibly damaged by malicious parties.".
Of course, many forums have a rule that says answers cannot simply hyperlink to another site but must be self-contained. This is probably a big reason why those sites typically contain so many answers that are dangerously over-simplified. Perhaps the official answer should also include a "minimal acceptable summary" that people can cut-n-paste into the forum to meet that requirement.
I can see why they want to be self-contained, since links go stale, etc., but in most cases the best answer to a question is to refer to an existing, well-written explanation from someone who is a recognised authority on the subject.