| From: | Lamar Owen <lowen(at)pari(dot)edu> |
|---|---|
| To: | "Merlin Moncure" <merlin(dot)moncure(at)rcsonline(dot)com> |
| Cc: | "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>, <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Is "trust" really a good default? |
| Date: | 2004-07-13 21:48:00 |
| Message-ID: | 200407131748.00592.lowen@pari.edu |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Monday 12 July 2004 17:10, Merlin Moncure wrote:
> IMO, forcing su password at initdb time (allowing blank password with a
> very stern warning) and bumping localhost to auth is the right way to
> go. As far as RPM's, etc. I don't think RPM considerations should be
> driving security concerns.
FWIW, the RPMs default to ident authentication, and trust is off. This is
however done as a patch to the sample pg_hba.conf. A command line switch to
initdb to mung up an ident default would be fine with me, though.
--
Lamar Owen
Director of Information Technology
Pisgah Astronomical Research Institute
1 PARI Drive
Rosman, NC 28772
(828)862-5554
www.pari.edu
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2004-07-13 21:56:13 | Re: Release planning (was: Re: Status report) |
| Previous Message | Marc G. Fournier | 2004-07-13 21:46:11 | Re: Release planning (was: Re: Status report) |