From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | "Johnson, Shaunn" <SJohnson6(at)bcbsm(dot)com> |
Cc: | PGSQL <pgsql-general(at)postgresql(dot)org> |
Subject: | Re: password security |
Date: | 2002-08-21 21:11:59 |
Message-ID: | 200208212112.g7LLC0I06260@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-general |
Yes, have you set pg_hba.conf to MD5 for those hosts?
---------------------------------------------------------------------------
Johnson, Shaunn wrote:
> Howdy:
>
> Running PostgreSQL 7.2.1 on RedHat Linux 7.2.
>
> We have a user community that connects to the
> database via ODBC drivers. They use a few
> applications, but for the most part, it's MS Access.
>
> I've changed the passwords for users so that
> they will have to set their passwords in
> the ODBC configuration. On PostgreSQL I
> just did:
>
> "alter user <username> with encrypted 'passwd'"
>
> and it looked okay (no errors to speak of returned).
>
> BUT, when the users log on without changing thier
> configuration, they can still access the tables.
>
> Is there something else I should change? Something
> in the hba.conf file?
>
> Any other documentation specifically to securing
> the database (permissions, groups, etc)?
>
> Thanks!
>
> -X
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073
From | Date | Subject | |
---|---|---|---|
Next Message | Oleg Lebedev | 2002-08-21 22:07:29 | FW: Merging databases |
Previous Message | Johnson, Shaunn | 2002-08-21 20:43:40 | password security |