From: | Stephen Frost <sfrost(at)snowman(dot)net> |
---|---|
To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
Cc: | Magnus Hagander <magnus(at)hagander(dot)net>, Christopher Head <chris2k01(at)hotmail(dot)com>, pgsql-bugs <pgsql-bugs(at)postgresql(dot)org> |
Subject: | Re: BUG #5559: Full SSL verification fails when hostaddr provided |
Date: | 2010-07-15 20:03:05 |
Message-ID: | 20100715200305.GV21875@tamriel.snowman.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-bugs |
* Tom Lane (tgl(at)sss(dot)pgh(dot)pa(dot)us) wrote:
> I suggest that we document hostaddr as being an auxiliary field that is
> not intended to be the primary source of the host name, but merely saves
> libpq from having to do a forward DNS lookup. In some cases it will
> work to supply hostaddr without host, but in others it won't. We should
> also state that supplying it does not guarantee no DNS lookups occur,
> because these external auth libraries will do one anyway.
That sounds like it implies we'd also remove the check which prevents
Kerberos from being used and fix it to use hostaddr if host is null.
That's fine with me. I'd rather have it not broken anyway.
Thanks,
Stephen
From | Date | Subject | |
---|---|---|---|
Next Message | Tom Lane | 2010-07-15 20:18:06 | Re: BUG #5559: Full SSL verification fails when hostaddr provided |
Previous Message | Tom Lane | 2010-07-15 15:58:06 | Re: BUG #5559: Full SSL verification fails when hostaddr provided |