Skip site navigation (1) Skip section navigation (2)

Re: Disable TRUST authentication mode

From: c k <shreeseva(dot)learning(at)gmail(dot)com>
To: Jan Lentfer <Jan(dot)Lentfer(at)web(dot)de>, pgsql-admin <pgsql-admin(at)postgresql(dot)org>
Subject: Re: Disable TRUST authentication mode
Date: 2012-03-10 15:21:58
Message-ID: CAN2Y=uMTg1YaT-=3jQGNafA84spi=fPQ=-3B+GP0raq=oWvZmA@mail.gmail.com (view raw or flat)
Thread:
Lists: pgsql-admin
It we can disable the TRUST mode then every user have to login with
password and every fraud user have to know the password (at least) of the
user. It is not the case that users from other departments share their
passwords, but fraud users just bypasses the need to know the password.

C P Kulkarni

On Sat, Mar 10, 2012 at 8:46 PM, Jan Lentfer <Jan(dot)Lentfer(at)web(dot)de> wrote:

> Am 10.03.2012 16:09, schrieb Jan Lentfer:
>
>  Sorry, maybe I do not entirely understand what you mean, but just >don't
>> use< trust in you pg_hba.conf?
>>
>
> Reading it again, I'd say this is your problem:
>
>
> "The simplest way is >to get the control of the server< and then change
> the mode of the authentication to trust and restart the server."
>
>
> If anyone can do that with your server, how would disabling trust improve
> anything?
>
>
> Jan
>
> --
> Sent via pgsql-admin mailing list (pgsql-admin(at)postgresql(dot)org)
> To make changes to your subscription:
> http://www.postgresql.org/**mailpref/pgsql-admin<http://www.postgresql.org/mailpref/pgsql-admin>
>

In response to

Responses

pgsql-admin by date

Next:From: Frank LanitzDate: 2012-03-10 15:26:59
Subject: Re: Disable TRUST authentication mode
Previous:From: Frank LanitzDate: 2012-03-10 15:19:07
Subject: Re: Disable TRUST authentication mode

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group