| From: | PG Bug reporting form <noreply(at)postgresql(dot)org> |
|---|---|
| To: | pgsql-bugs(at)lists(dot)postgresql(dot)org |
| Cc: | k(dot)yudhveer(at)gmail(dot)com |
| Subject: | BUG #16079: Question Regarding the BUG #16064 |
| Date: | 2019-10-25 23:16:25 |
| Message-ID: | 16079-29e9c038e1463751@postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs pgsql-hackers |
The following bug has been logged on the website:
Bug reference: 16079
Logged by: Yudhveer Kandukuri
Email address: k(dot)yudhveer(at)gmail(dot)com
PostgreSQL version: 10.10
Operating system: UBUNTU
Description:
As your team mentioned that LDAP process is not secured compared to the
GSSAPI authentication.
Can you clarify me this question, whenever the client provide his
credentials to connect to the PostgreSQL server it will authenticated
against the LDAP Server and then LDAP will direct the client connecttion to
the Postgrers server. But the user credentials will not be sent to
Postgresql server to authenticate.
Because your team mentioned this statement " it's much more secure than
using LDAP-based auth and avoids the user's password being
sent to the PostgreSQL server (where it could be compromised if the
PGprocess is compromised)."
I am having user defined in the LDAP server with all the credentails and
also same user in the postgres server.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Thomas Munro | 2019-10-26 01:48:59 | Re: BUG #16067: Failed system call was semget |
| Previous Message | Tom Lane | 2019-10-25 17:27:52 | Re: BUG #16046: xpath returns CDATA tag along with the value in postgres 12 |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Michael Paquier | 2019-10-26 02:45:46 | Re: [PATCH] Do not use StdRdOptions in Access Methods |
| Previous Message | Peter Eisentraut | 2019-10-25 20:39:48 | Re: typo: postGER |