| From: | "Magnus Hagander" <mha(at)sollentuna(dot)net> |
|---|---|
| To: | "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | <pgsql-hackers(at)postgresql(dot)org>, <pgsql-patches(at)postgresql(dot)org> |
| Subject: | Re: [HACKERS] Is "trust" really a good default? |
| Date: | 2004-07-13 20:20:42 |
| Message-ID: | 6BCB9D8A16AC4241919521715F4D8BCE34BE4C@algol.sollentuna.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
>The only part of this discussion that I'd really be prepared
>to buy into
>is the part about *if* you use -W or --pwfile, then set up pg_hba.conf
>with MD5 as the default auth (because that's probably what the user
>wants anyway). But otherwise I think we should leave initdb's behavior
>alone. I do not agree with trying to force people to use passwords.
Ok. Here is a patch that does this. I still think there should be a
warning when trust is set, but I'm clearly not convincing enough about
this.
Might still be worth adding "--ident" as a parameter anyway, but in that
case only to help the distros that need it. Or not, because they already
have a way to deal with it.
//Magnus
| Attachment | Content-Type | Size |
|---|---|---|
| initdb_pwd.patch | application/octet-stream | 514 bytes |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2004-07-13 20:21:05 | Another locale test program |
| Previous Message | Peter Eisentraut | 2004-07-13 20:08:19 | Proposal for detecting encoding mismatch in initdb |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Simon Riggs | 2004-07-13 20:25:50 | Re: Point in Time Recovery |
| Previous Message | Bruce Momjian | 2004-07-13 16:51:30 | Re: psql schema permissions |