| From: | Peter Koczan <pjkoczan(at)gmail(dot)com> |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: ident authentication over tcp |
| Date: | 2009-12-10 16:21:52 |
| Message-ID: | 4544e0330912100821p1b404450sec1895675be7ddd4@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Wed, Dec 9, 2009 at 3:29 PM, Adam Tauno Williams
<awilliam(at)opengroupware(dot)us> wrote:
> On Wed, 2009-12-09 at 15:18 -0600, Peter Koczan wrote:
>> I found the packages. I'm still confused why local ident
>> authentication works even without a running ident server, though. Does
>> anyone know why that is?
>
> Does "local" really use ident? I always assumed local-ident was just
> aliased to an NSS call.
>
> Seriously, ident is dead, obsolete, and insecure tech. You are best
> just not using it.
I was just considering it as one possibility for a limited purpose,
and after reading up I'm going to try something else.
> If by "local ident" you mean "when connecting thru unix-domain sockets" then
> read here:
>
> http://www.postgresql.org/docs/current/static/auth-methods.html#AEN28519
Yep, that's what I meant. Thanks for the info.
Thanks again,
Peter
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Venkateswara Rao Bondada | 2009-12-11 09:58:08 | How to view the code of a function |
| Previous Message | Mahesh Paolini-Subramanya | 2009-12-10 14:10:57 | Is vacuumdb an "all or nothing" operation? |