| From: | Shanta McBain <csc(at)computersystemconsulting(dot)ca> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: ident authentication problem |
| Date: | 2004-04-22 19:15:24 |
| Message-ID: | 200404221215.24390.csc@computersystemconsulting.ca |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On April 22, 2004 04:58, Karsten Hilbert wrote:
> >
> > How, exactly, is that?
>
> a) it seems SQL ledger wants to store data in PostgreSQL
It is the prefred database but I think you can use others.
> b) I assume it wants to store *financial* data
Yes It is an accounting package.
> c) local/all/trust means *all* *local* users are *trusted*, eg
> don't require any authentication, hence system account foo
> can access *all* databases (including the SQL-ledger one)
> even though foo does not have a corresponding DB account
>
> Assuming, that there aren't any schema level restrictions
> (GRANTs) set up which may or may not be the case. Forgot to
> mention that point earlier on.
>
> Or am I missing something ?
I think the SQL-ledger docs were thinking in terms of a stand alone system. My
asking this question has gotten some interesting discoution of authentication
and security. I used the suggestion on mapping the users So postgress would
be able to relate to the SQL ledger user and the allowed postgress user. This
meant that SQL-ledger may access the database without open the database to
attack. Much better solution for sure.
--
Thanks for the help.
Shanta McBain
Http://computersystemconsulting.ca Web hosting and Application Hosting.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jim C. Nasby | 2004-04-22 19:20:08 | pg_autovacuum startup script |
| Previous Message | Andrew Sullivan | 2004-04-22 18:40:26 | Re: Replication |