On 11/24/2015 1:33 PM, Chris Withers wrote:
>
> What's the default contents of pg_hba.conf that postgres ships with?
>
> I've been to it contains 'trust' for all local connections.
> Is this wise? Anyone who can get a shell on your database server can
> connect to any database as any user?
it varies with distributions, and it can be specified via the -A/--auth
argument to initdb. most distributions I've seen use 'peer' for local
connections by default.
--
john r pierce, recycling bits in santa cruz