Skip site navigation (1) Skip section navigation (2)

[PORTS] Port Bug Report: ident authority map problem (fwd)

From: Bruce Momjian <maillist(at)candle(dot)pha(dot)pa(dot)us>
To: hackers(at)postgreSQL(dot)org (PostgreSQL-development)
Subject: [PORTS] Port Bug Report: ident authority map problem (fwd)
Date: 1998-03-30 17:22:11
Message-ID: 199803301722.MAA15245@candle.pha.pa.us (view raw or flat)
Thread:
Lists: pgsql-hackers
Can someone comment on this?

Forwarded message:
> From owner-pgsql-ports(at)hub(dot)org Thu Mar 26 15:25:15 1998
> Date: Thu, 26 Mar 1998 15:12:29 -0500 (EST)
> From: Unprivileged user <nobody(at)hub(dot)org>
> Message-Id: <199803262012(dot)PAA11300(at)hub(dot)org>
> To: pgsql-ports(at)postgreSQL(dot)org
> Reply-to: john edstrom <edstrom(at)slugo(dot)hmsc(dot)orst(dot)edu>
> Subject: [PORTS] Port Bug Report: ident authority map problem
> Sender: owner-pgsql-ports(at)hub(dot)org
> Precedence: bulk
> 
> 
> ============================================================================
>                         POSTGRESQL BUG REPORT TEMPLATE
> ============================================================================
> 
> 
> Your name		: john edstrom
> Your email address	: edstrom(at)slugo(dot)hmsc(dot)orst(dot)edu
> 
> Category		: runtime: back-end
> Severity		: serious
> 
> Summary: ident authority map problem
> 
> System Configuration
> --------------------
>   Operating System   : linux 2.0.32 ELF
> 
>   PostgreSQL version : 6.3.1
> 
>   Compiler used      : cc -v => gcc version egcs-2.90.23 980102 (egcs-1.0.1 release)
> 
> 
> Hardware:
> ---------
> Linux Poopsie.hmsc.orst.edu 2.0.32 #26 Wed Mar 18 17:11:39 PST 1998 i586 unknown
> 
> 
> Versions of other tools:
> ------------------------
> GNU Make version 3.76.1
> flex version 2.5.4
> 
> 
> --------------------------------------------------------------------------
> 
> Problem Description:
> --------------------
> postgres gets confused reading hba.conf.  The last line
> pg_hba.conf appears not to be read properly.  Specifications
> above the last line appear to be understood correctly.
> 
> --------------------------------------------------------------------------
> 
> Test Case:
> ----------
> Here is how I do it.
> 
> 3 lines in pg_hba.con
> 
> host    edstrom 127.0.0.1       255.255.255.255 ident   test
> host    all     127.0.0.1       255.255.255.255 ident   pgsql
> host    tstdb   127.0.0.1       255.255.255.255 ident   tst
> 
> 
> 4 lines in pg_ident.conf
> tst     edstrom edstrom
> pgsql   postgres        postgres
> test    edstrom edstrom
> test    postgres        postgres
> 
> Postgres and edstrom are unix accounts, tstdb is a valid
> postgres user but not a unix account.
> 
> Around line 729 (verify_against_open_usermap()) in 
> src/backend/libpq/hba.c I put:
> 
>     sprintf(PQerrormsg,"pg_ident: [%s] [%s] [%s] [%s] [%s] [%s]\n",
>                        file_map, usermap_name,
>                        file_pguser, pguser,
>                        file_iuser, ident_username
>                        );
>                     fputs(PQerrormsg, stderr);
>                     pqdebug("%s", PQerrormsg);
> 
> using psql from the command line user edstrom tries to
> connect to tstdb ("psql tstdb") and is rejected.  The error
> log says:
> 
> >>->pg_ident: [tst] [pgsql] [edstrom] [edstrom] [edstrom] [edstrom]
>     pg_ident: [pgsql] [pgsql] [postgres] [edstrom] [postgres] [edstrom]
>     pg_ident: [test] [pgsql] [edstrom] [edstrom] [edstrom] [edstrom]
>     pg_ident: [test] [pgsql] [postgres] [edstrom] [postgres] [edstrom]
>     pg_ident: [] [pgsql] [] [edstrom] [] [edstrom]
>     pg_ident: [] [pgsql] [] [edstrom] [] [edstrom]
>     User authentication failed
> 
> The arrow shows where it should have succeeded.  For some
> It isn't cycling through usermap_name properly.
> 
> --------------------------------------------------------------------------
> 
> Solution:
> ---------
> 
> 
> --------------------------------------------------------------------------
> 
> 
> 


-- 
Bruce Momjian                          |  830 Blythe Avenue
maillist(at)candle(dot)pha(dot)pa(dot)us              |  Drexel Hill, Pennsylvania 19026
  +  If your life is a hard drive,     |  (610) 353-9879(w)
  +  Christ can be your backup.        |  (610) 853-3000(h)

pgsql-hackers by date

Next:From: Bruce MomjianDate: 1998-03-30 17:35:20
Subject: Re: [HACKERS] Re: [PORTS] Pgaccess doesn't run on -current anymore, Update (fwd)
Previous:From: Bruce MomjianDate: 1998-03-30 17:14:31
Subject: Re: [HACKERS] patch for buffer overrun with sequences

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group