| From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Anton Berezin <tobez(at)tobez(dot)org>, pgsql-patches(at)postgresql(dot)org |
| Subject: | Re: Add another AUTHTYPE for UNIX-domain connections |
| Date: | 2001-12-28 04:49:24 |
| Message-ID: | 200112280449.fBS4nOG28411@candle.pha.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-patches |
> Anton Berezin <tobez(at)tobez(dot)org> writes:
> > On some platforms, it is possible to reliably determine the effective
> > credentials of a UNIX-domain peer.
>
> Umm ... I think this is in 7.2 already, although not using getpeereid.
>
> Anyone have an idea whether there are platforms that have getpeereid but
> not SO_PEERCRED or SCM_CREDS? If so it might be worth adding getpeereid
> as an alternate implementation in ident_unix().
OpenBSD implements only getpeereid(). I have added this to the TODO
list. We already have the other BSD's covered, and Linux. I am
concerned about moving to getpeereid() on the other BSD's because we
have working code already for them and I am not sure how new the OS has
to be to have getpeereid() support, i.e. is it in FreeBSD 4.4? I don't
see a manual page for it, and FreeBSD 5.0 is not for major release until
another year so our current code seems best.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2001-12-28 19:43:46 | Re: Undocumented feature costs a lot of performance in COPY |
| Previous Message | Serguei Mokhov | 2001-12-28 03:51:26 | Re: NLS (Russian) - update |