Re: "trust" authentication in pg_hba.conf

From: John R Pierce <pierce(at)hogranch(dot)com>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: "trust" authentication in pg_hba.conf
Date: 2015-11-24 21:37:36
Message-ID: 5654D8A0.6030405@hogranch.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

On 11/24/2015 1:33 PM, Chris Withers wrote:
>
> What's the default contents of pg_hba.conf that postgres ships with?
>
> I've been to it contains 'trust' for all local connections.
> Is this wise? Anyone who can get a shell on your database server can
> connect to any database as any user?

it varies with distributions, and it can be specified via the -A/--auth
argument to initdb. most distributions I've seen use 'peer' for local
connections by default.

--
john r pierce, recycling bits in santa cruz

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Adrian Klaver 2015-11-24 23:24:41 Re: error messages not getting logged when running script from cron
Previous Message Chris Withers 2015-11-24 21:33:43 "trust" authentication in pg_hba.conf