| From: | "Andrew Dunstan" <andrew(at)dunslane(dot)net> |
|---|---|
| To: | "PostgreSQL Hackers Mailing List" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | CIDR in pg_hba.conf |
| Date: | 2003-05-07 13:50:55 |
| Message-ID: | 00ac01c3149f$af241940$6401a8c0@DUNSLANE |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Looking through the TODO list I noticed this item apparently unclaimed:
* Allow CIDR format to be used in pg_hba.conf
I can look at doing this, having done similar code some years ago.
Internally, it seems the best thing to do would be to turn the /nn into a
conventional netmask of the right family. I guess I'd add a utility routine
to ip.c for that.
The syntax for pg_hba.conf would change slightly, to allow these forms:
host database user CIDR-address authentication-method
[authentication-option]
hostssl database user CIDR-address authentication-method
[authentication-option]
So in hba.c, if we found a / in the IP address, we wouldn't go looking for a
separate netmask field.
cheers
andrew
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2003-05-07 13:54:56 | Re: 7.4 features list |
| Previous Message | Jim C. Nasby | 2003-05-07 13:36:16 | Re: [PERFORM] Hypothetical suggestions for planner, indexing improvement |