On Tue, Jun 7, 2011 at 1:56 AM, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
> Fujii Masao <masao(dot)fujii(at)gmail(dot)com> writes:
>>> An IP address is specified in standard dotted decimal notation with
>>> a CIDR mask length. The mask length indicates the number of
>>> high-order bits of the client IP address that must match. Bits to the
>>> right of this must be zero in the given IP address.
>> Is the last statement correct? When I specified the following setting
>> in pg_hba.conf, I could not find any problem in PostgreSQL.
>> host all all 192.168.1.99/24 trust
>> As far as I read the code, those bits seem not to need to be zero.
>> Attached patch just removes that statement.
> Even if it happens to work that way at the moment, do we want to
> encourage people to depend on such an implementation artifact?
> IOW, if you read "must" as "if you want to trust it to work in future
> versions, you must", the advice is perfectly sound.
Okay. Sounds reasonable. I drop the patch.
NIPPON TELEGRAPH AND TELEPHONE CORPORATION
NTT Open Source Software Center
In response to
pgsql-docs by date
|Next:||From: Tom Lane||Date: 2011-06-08 15:09:27|
|Subject: Re: BUG #5926: information schema dtd_identifier for element_types, columns, parameters views inconsistent |
|Previous:||From: Tom Lane||Date: 2011-06-06 16:56:25|
|Subject: Re: CIDR address in pg_hba.conf |