| From: | Bruce Momjian <bruce(at)momjian(dot)us> |
|---|---|
| To: | Volker Aßmann <volker(dot)assmann(at)gmail(dot)com> |
| Cc: | Josh Berkus <josh(at)agliodbs(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Andrew Dunstan <andrew(at)dunslane(dot)net>, Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Disabling trust/ident authentication configure option |
| Date: | 2015-05-18 19:55:30 |
| Message-ID: | 20150518195530.GH9458@momjian.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Mon, May 18, 2015 at 09:32:23PM +0200, Volker Aßmann wrote:
> That's what we are currently doing with the patch Bernd posted at the beginning
> of this thread. But we thought we might post the patch for consideration here
> as the use case might be sufficiently general that it may be of use to others.
It isn't general enough.
> But I like the more general approach proposed by Alvaro, so in case this patch
> would have a chance to not be immediately rejected, I would try to implement
> the more generic approach. I would also include a check to ensure at least one
> reasonably secure way for password recovery is available. For Unix systems
> "peer" authentication seems to be a good candidate.
Likely to be rejected.
--
Bruce Momjian <bruce(at)momjian(dot)us> http://momjian.us
EnterpriseDB http://enterprisedb.com
+ Everyone has their own god. +
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alvaro Herrera | 2015-05-18 20:00:41 | Re: Disabling trust/ident authentication configure option |
| Previous Message | Robert Haas | 2015-05-18 19:49:17 | Re: upper planner path-ification |