| From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Helge Bahmann <bahmann(at)math(dot)tu-freiberg(dot)de>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: [PATCHES] Allow IDENT authentication on local connections (Linux only) |
| Date: | 2001-08-02 15:22:50 |
| Message-ID: | 200108021522.f72FMog26263@candle.pha.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> Ah, now I understand: those references I saw mention the existence of
> the underlying SCM_CREDENTIALS (or whatever it's called) message type,
> not the SO_PEERCRED getsockopt facility.
Yes! That was it the Solaris patch I remember, SCM_CREDENTIALS.
> I agree that it's not worth pursuing at the moment. A localized change
> in the backend is one thing, but an OS-specific addition to our client-
> visible authentication protocol would be a lot bigger change, and a lot
> more debatable. If we get a larger/more active Solaris user community,
> maybe someone will be motivated to do it.
Yes. It is part of that whole SvR4 API that allowed you to push file
descriptors to other processes and stuff like that.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2001-08-02 15:35:45 | Re: Re: What needs to be done? |
| Previous Message | Liam Stewart | 2001-08-02 14:33:59 | Re: What needs to be done? |