Skip site navigation (1) Skip section navigation (2)

Re: remote user

From: johnf <jfabiani(at)yolo(dot)com>
To: pgsql-novice(at)postgresql(dot)org
Subject: Re: remote user
Date: 2007-12-12 18:13:44
Message-ID: 200712121013.44689.jfabiani@yolo.com (view raw or flat)
Thread:
Lists: pgsql-novice
On Wednesday 12 December 2007 09:52:48 am Tom Lane wrote:
> johnf <jfabiani(at)yolo(dot)com> writes:
> > I have one remote user that wants to connect via DSL and a dynamic IP.  I
> > do NOT want to open the database to all internet IP's.  Of course the
> > fear is someone will attack and break the password for the remote user. 
> > What is the best way I can do this?
>
> Limit the range of IPs as much as you can, and require the connection to
> use SSL, and maybe insist on a client certificate.
>
> 			regards, tom lane
>

What do you mean by a cleint certificate?  I'll assume it is some sort of key 
that is passed to my server.  But would postgres use the key?  Or is this 
just a way to insure user is who he say he is?


-- 
John Fabiani

In response to

Responses

pgsql-novice by date

Next:From: Tom LaneDate: 2007-12-12 22:00:30
Subject: Re: remote user
Previous:From: johnfDate: 2007-12-12 18:11:21
Subject: Re: remote user

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group