| From: | Berend Tober <btober(at)computer(dot)org> |
|---|---|
| To: | chiru r <chirupg(at)gmail(dot)com>, Forums postgresql <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: Client Authentication methods |
| Date: | 2017-11-10 13:56:26 |
| Message-ID: | 5829ebb8-70ee-a8ea-9493-ad89a1610d1c@computer.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
chiru r wrote:
> Hi All,
>
> I am trying to understand the Authentication method in pg_hba.conf file (password & md5) in
> PostgreSQL database server.
>
> I am assuming that the user provides the connection string host/usser/password,then client will go
> and contact the DB server pg_hba.conf file in memory without carrying password over the network
> initially, and then it confirms the authentication method from pg_hba.conf ,then it decides weather
> it send clear text or md5 encrypted password from client to Server to make a session?
>
> Is my assumption is correct ? or What exactly it make the difference for client if i use
> md5/password in pg_hba.conf file in DB server?.
>
Your assumptions sound consistent with documentation appearing at
https://www.postgresql.org/docs/10/static/protocol-flow.html
https://www.postgresql.org/docs/10/static/auth-methods.html
-- B
| From | Date | Subject | |
|---|---|---|---|
| Next Message | hmidi slim | 2017-11-10 14:27:18 | Re: Spelling dictionaries |
| Previous Message | chiru r | 2017-11-10 13:25:24 | Client Authentication methods |