Quick Links

Re: Disabling trust/ident authentication configure option

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Andrew Dunstan <andrew(at)dunslane(dot)net>
Cc:	Robert Haas <robertmhaas(at)gmail(dot)com>, Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, Volker Aßmann <volker(dot)assmann(at)gmail(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Disabling trust/ident authentication configure option
Date:	2015-05-06 21:13:13
Message-ID:	6837.1430946793@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Andrew Dunstan <andrew(at)dunslane(dot)net> writes:
> (Personally I think there's a very good case for completely ripping out
> RFC1413 ident auth. I've not seen it used in a great long while, and
> it's always been a security risk.)

FWIW, I agree with that --- or at least making it a not-built-by-default
option.

Probably the right time to make any such changes is at the same time
we add the proposed more-secure-than-MD5 password option.

regards, tom lane

In response to

Re: Disabling trust/ident authentication configure option at 2015-05-06 20:28:43 from Andrew Dunstan

Responses

Re: Disabling trust/ident authentication configure option at 2015-05-06 22:41:28 from Josh Berkus

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Andres Freund	2015-05-06 21:18:24	Re: INSERT ... ON CONFLICT syntax issues
Previous Message	Heikki Linnakangas	2015-05-06 21:10:22	Re: INSERT ... ON CONFLICT syntax issues