| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | "David M(dot) Kaplan" <dkaplan(at)genes(dot)bio(dot)puc(dot)cl> |
| Cc: | <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: local security |
| Date: | 2001-04-14 01:37:03 |
| Message-ID: | Pine.LNX.4.30.0104140335360.945-100000@peter.localdomain |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
David M. Kaplan writes:
> I have a very simple security setup wish. I only want to allow local
> connections where each user can only log into postgres as himself, but
> there isnt a "ident sameuser" option for local connections. Is there
> any way around this? Can anyone explain to me why such an option doesnt
> exist for local connections?
Because ident works based on TCP ports. There is a similar mechanism for
Unix domain sockets implemented in some kernels, but it's not portable and
therefore there hasn't been wide-spread enthusiasm for supporting it.
--
Peter Eisentraut peter_e(at)gmx(dot)net http://yi.org/peter-e/
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Karl DeBisschop | 2001-04-14 01:44:17 | Re: anti Christian bias? |
| Previous Message | Tom Lane | 2001-04-14 01:32:07 | Re: Address already in use? |