Oops, making a fool of myself again. I don't think this is possible.
Code signing authentication works by comparing an application to a
digital signature that can't be generated without a password. Since the
server doesn't have a copy of the application or signature, it won't
work. Oh well, it sounded good.
Mark Walker wrote:
> But you don't have to turn it on by default for any particular
> database, and you could sign any application you want for your
> individual server.
> Paul Lambert wrote:
>> Mark Walker wrote:
>>> One other thing. Another approach to this problem would be to have
>>> some sort of code signing/authentication capabilities for the
>>> postgresql server. For instance, you login as an administrator
>>> (some sort of enhanced privs), you get to look at the databases you
>>> have permission for. Otherwise, postgresql has to recognize the
>>> application. Has this ever been discussed?
>> I don't think it would be feasible for any RDBMS to recognise the
>> connecting application, certainly in my view the effort it would take
>> to alter the postmaster/odbc driver and others would be a lot more
>> than the apparent gain from having that functionality.
> ---------------------------(end of broadcast)---------------------------
> TIP 9: In versions below 8.0, the planner will ignore your desire to
> choose an index scan if your joining column's datatypes do not
In response to
pgsql-general by date
|Next:||From: Jim Rosenberg||Date: 2007-02-01 03:29:55|
|Subject: Re: PG Email Client|
|Previous:||From: Ron Johnson||Date: 2007-02-01 02:13:20|
|Subject: Re: How to allow users to log on only from my application
not from pgadmin|