| From: | Ganesh Korde <ganeshakorde(at)gmail(dot)com> |
|---|---|
| To: | MUKESH PRASAD <mukeshprasad_hit(at)yahoo(dot)co(dot)in> |
| Cc: | Geoff Winkless <pgsqladmin(at)geoff(dot)dj>, pgsql-admin(at)lists(dot)postgresql(dot)org |
| Subject: | Re: The default database account can be accessed without a password |
| Date: | 2020-09-24 08:18:51 |
| Message-ID: | CAPNyb0V9ZZMp8wL6vE1yKSGL2ozP9uNDTSWh4n0HbWjg+JMN3A@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
You need to change it to md5.
On Tue, 22 Sep 2020, 7:38 pm MUKESH PRASAD, <mukeshprasad_hit(at)yahoo(dot)co(dot)in>
wrote:
> Hi Geoff,
> Yes it is allowed for all the hosts in same subnet.
>
> host all all 10.10.10.0/24 trust
>
> Regards,
> Mukesh Prasad
>
> Sent from Yahoo Mail on Android
> <https://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers&af_wl=ym&af_sub1=Internal&af_sub2=Global_YGrowth&af_sub3=EmailSignature>
>
> On Tue, 22 Sep 2020 at 7:10 PM, Geoff Winkless
> <pgsqladmin(at)geoff(dot)dj> wrote:
> On Tue, 22 Sep 2020 at 14:33, MUKESH PRASAD
>
> <mukeshprasad_hit(at)yahoo(dot)co(dot)in> wrote:
> > I am getting VA with CVE I'd 1999-0508 where it says my default database
> is unpassword. However I checked all the dB with \l command and In none of
> the database I am able to login without password.
> >
> > It refers to the default postgres user and I have changed password too
> multiple times but still it complaints.
>
>
> Do you have "trust" for any lines in pg_hba.conf?
>
> Geoff
>
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | JOIGNY Michael @Neteven | 2020-09-24 10:18:26 | Re: Cannot allocate memory |
| Previous Message | Jim Geurts | 2020-09-23 19:15:59 | Re: HIPAA Business Associate Agreement (BAA) |