| From: | "Dave" <dave(at)hawk-systems(dot)com> |
|---|---|
| To: | <pgsql-admin(at)postgresql(dot)org> |
| Subject: | logic check of pg_hba.conf configuration |
| Date: | 2002-03-10 23:20:23 |
| Message-ID: | DBEIKNMKGOBGNDHAAKGNOEIMNAAA.dave@hawk-systems.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
so rarely have problems with postgres that setup or reconfigs are few and far
between. In reviewing the docs on this after a recent config error, I am asking
for assistance to acid test the following config file.
running version 7.0
current pg_hba.conf contains//
local all trust
host sameuser 127.0.0.1 255.255.255.255 password
host all 123.45.678.1 255.255.255.255 trust
host all 0.0.0.0 0.0.0.0 reject
intended results are//
1) anyone who can ssh into the box should have admin priv anyway, as such trust
them
2) anyone accessing it via PHP, Perl, or others using port 5432 but from the
same physical machine will get access to the database that they provide
username/pw for - expect them to be logging in as their postgres username
3) 123.45.678.1 is a secure box, and needs to access database tables and such...
as such it should be able to connect to and do whatever as needed... trusted
4) no one else should from any other machine should be able to access any
database resources on this server
mods, misconceptions, problems?
thanks
Dave
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2002-03-11 02:07:45 | Re: logic check of pg_hba.conf configuration |
| Previous Message | Dave | 2002-03-10 23:11:21 | Re: Postgres not starting at boot(FreeBSD) - startup script not releasing < solved |