Skip site navigation (1) Skip section navigation (2)

Re: remote user

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: johnf <jfabiani(at)yolo(dot)com>
Cc: pgsql-novice(at)postgresql(dot)org
Subject: Re: remote user
Date: 2007-12-12 22:00:30
Message-ID: 26189.1197496830@sss.pgh.pa.us (view raw or flat)
Thread:
Lists: pgsql-novice
johnf <jfabiani(at)yolo(dot)com> writes:
> On Wednesday 12 December 2007 09:52:48 am Tom Lane wrote:
>> Limit the range of IPs as much as you can, and require the connection to
>> use SSL, and maybe insist on a client certificate.

> What do you mean by a cleint certificate?  I'll assume it is some sort of key 
> that is passed to my server.  But would postgres use the key?  Or is this 
> just a way to insure user is who he say he is?

I'm no expert on SSL usage, but there's some basic info here:
http://www.postgresql.org/docs/8.2/static/ssl-tcp.html
For the full story on SSL you'd want to visit
http://www.openssl.org/

			regards, tom lane

In response to

Responses

pgsql-novice by date

Next:From: johnfDate: 2007-12-12 22:13:20
Subject: Re: remote user
Previous:From: johnfDate: 2007-12-12 18:13:44
Subject: Re: remote user

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group