Re: Can we stop defaulting to 'ident'?

From: Stephen Frost <sfrost(at)snowman(dot)net>
To: James Cassell <fedoraproject(at)cyberpear(dot)com>
Cc: PostgreSQL Yum Package List <pgsql-pkg-yum(at)lists(dot)postgresql(dot)org>
Subject: Re: Can we stop defaulting to 'ident'?
Date: 2019-12-19 17:32:28
Message-ID: 20191219173228.GF3195@tamriel.snowman.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-pkg-debian pgsql-pkg-yum

Greetings,

* James Cassell (fedoraproject(at)cyberpear(dot)com) wrote:
> Peer does not work with TCP connections, and I haven't figured how to get,e.g., third-party Java applications working without TCP.

The entire point of peer was to segregate the very insecure 'ident' from
the actually quite secure 'peer' auth, so, no, it's not going to work
over TCP connections- that's more-or-less the point.

Regarding a JDBC connection, you can pass in a "socketFactory", as I
understand it (though I'm no JDBC expert, I'd suggest you address issues
you have with that to the JDBC list):

https://jdbc.postgresql.org/documentation/head/connect.html

Thanks,

Stephen

In response to

Responses

Browse pgsql-pkg-debian by date

  From Date Subject
Next Message James Cassell 2019-12-19 21:07:47 Re: Can we stop defaulting to 'ident'?
Previous Message Christoph Berg 2019-12-19 17:31:34 Re: Can we stop defaulting to 'ident'?

Browse pgsql-pkg-yum by date

  From Date Subject
Next Message James Cassell 2019-12-19 21:07:47 Re: Can we stop defaulting to 'ident'?
Previous Message Christoph Berg 2019-12-19 17:31:34 Re: Can we stop defaulting to 'ident'?