| From: | Thomas Beutin <tyrone(at)laokoon(dot)IN-Berlin(dot)DE> |
|---|---|
| To: | Reid Thompson <Reid(dot)Thompson(at)ateb(dot)com>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: pg_hba.conf authorization question |
| Date: | 2002-12-13 16:46:25 |
| Message-ID: | 20021213174625.A8650@laokoon.bug.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Fri, Dec 13, 2002 at 11:25:00AM -0500, Reid Thompson wrote:
> Could someone give me guidance on the following.
> I would like to configure the DB such that connections will only be
> allowed to users created using createuser verified by the password that
> was set during the creatuser process. The user and password do NOT
> correlate to system users(linux host). Connections will be both local
> and TCP based.
> Rather than the open to everyone entries that I have in pg_hba.conf
> below, what should the entries look like under
>
> # TYPE DATABASE IP_ADDRESS MASK AUTH_TYPE
> AUTH_ARGUMENT
> local all trust
> host all 127.0.0.1 255.255.255.255 trust
> host all 192.168.100.0 255.255.255.0 trust
AFAIK the AUTH_TYPE "trust" doesn't look for password but let the
user connect. IMHO the AUTH_TYPE "md5" compares the given password
with that stored in pg_shadow.
But i've never tried...
Greetings,
-tb
--
Thomas Beutin tb(at)laokoon(dot)IN-Berlin(dot)DE
Beam me up, Scotty. There is no intelligent live down in Redmond.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Çagil Seker | 2002-12-13 17:07:20 | Re: pg_hba.conf authorization question |
| Previous Message | Jean-Luc Lachance | 2002-12-13 16:42:25 | Re: [PERFORM] CLUSTER command |