From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Helge Bahmann <bahmann(at)math(dot)tu-freiberg(dot)de>, Oliver Elphick <olly(at)lfix(dot)co(dot)uk>, pgsql-hackers(at)postgresql(dot)org |
Subject: | Re: Re: [PATCHES] Allow IDENT authentication on local connections (Linux only) |
Date: | 2001-08-06 02:55:48 |
Message-ID: | 200108060255.f762tmx16675@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
> Tom Lane writes:
>
> > Well, we need to talk about that. I like your idea of making ident auth
> > "just work" on local connections better than Oliver's approach of
> > inventing a separate auth-type keyword.
>
> This is exactly what I would not like to see. "ident" defines a specific
> protocol, with an ident server. ident over something not TCP/IP doesn't
> make sense, it could confuse admins. Just because it works similar
> doesn't mean it is the same. In particular, the security issues are
> completely different.
Peter has a point here. The only way to save the 'ident' keyword is to
make it mean 'auto-identify' rather than identd.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026
From | Date | Subject | |
---|---|---|---|
Next Message | Grant | 2001-08-06 03:09:32 | Vim! |
Previous Message | Tom Lane | 2001-08-06 01:59:05 | Re: partial index |