| From: | listas(at)lozano(dot)eti(dot)br |
|---|---|
| To: | "Gregory S(dot) Williamson" <gsw(at)globexplorer(dot)com>, <listas(at)lozano(dot)eti(dot)br>, "Jerome Lyles" <susemail(at)hawaii(dot)rr(dot)com>, <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: IDENT and pg_hda.conf |
| Date: | 2004-01-31 02:05:02 |
| Message-ID: | 20040131010502.2418D1A86FB@smtp.infolink.com.br |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hi,
> > host all all 12.4.12.0 255.255.255.0 trust
>
> This looks to me a bad idea. Anyone will be able to connect as any user they
> wish without providing a password.
>
> True enough in the "real" world ... this is taken from a very "hidden" server
used for testing
> ideas ... not anything exposed to the world.
You mean a islated testing enviroment, right? :-) Remember most successfull
attacks comes from insiders, not outsiders, of the company.
[]s, Fernando Lozano
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Manuel Tejada | 2004-01-31 02:13:09 | PostgreSQL 7.4.1 and pgdb.py |
| Previous Message | Kris Jurka | 2004-01-31 01:17:44 | Re: Triggers, Stored Procedures, PHP. was: Re: PostgreSQL |