From: | c k <shreeseva(dot)learning(at)gmail(dot)com> |
---|---|
To: | Jan Lentfer <Jan(dot)Lentfer(at)web(dot)de>, pgsql-admin <pgsql-admin(at)postgresql(dot)org> |
Subject: | Re: Disable TRUST authentication mode |
Date: | 2012-03-10 15:21:58 |
Message-ID: | CAN2Y=uMTg1YaT-=3jQGNafA84spi=fPQ=-3B+GP0raq=oWvZmA@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin |
It we can disable the TRUST mode then every user have to login with
password and every fraud user have to know the password (at least) of the
user. It is not the case that users from other departments share their
passwords, but fraud users just bypasses the need to know the password.
C P Kulkarni
On Sat, Mar 10, 2012 at 8:46 PM, Jan Lentfer <Jan(dot)Lentfer(at)web(dot)de> wrote:
> Am 10.03.2012 16:09, schrieb Jan Lentfer:
>
> Sorry, maybe I do not entirely understand what you mean, but just >don't
>> use< trust in you pg_hba.conf?
>>
>
> Reading it again, I'd say this is your problem:
>
>
> "The simplest way is >to get the control of the server< and then change
> the mode of the authentication to trust and restart the server."
>
>
> If anyone can do that with your server, how would disabling trust improve
> anything?
>
>
> Jan
>
> --
> Sent via pgsql-admin mailing list (pgsql-admin(at)postgresql(dot)org)
> To make changes to your subscription:
> http://www.postgresql.org/**mailpref/pgsql-admin<http://www.postgresql.org/mailpref/pgsql-admin>
>
From | Date | Subject | |
---|---|---|---|
Next Message | Frank Lanitz | 2012-03-10 15:26:59 | Re: Disable TRUST authentication mode |
Previous Message | Frank Lanitz | 2012-03-10 15:19:07 | Re: Disable TRUST authentication mode |