Re: pg_hba.conf analysis tool

>We are in the process of talking about this:

>    http://www.postgresql.org/message-id/86fvnm5t44.fsf@jerry.enova.com

> I know of no tool currently available.
Thank you, for the reply. I think, my case might be a little bit different.
I am working with several clusters and I find sometimes pg_hba rules which does not make sense. So, a tool which could give hints or detect bad configurations might help.

For example

local   all         appl1                          trust
local   all         appl1                          md5

Or  
host    all         all         IP_ADDRESS/24       md5
host    all         all         IP_ADDRESS/32       md5

OR
host    all         all         IP_ADDRESS/24       reject
host    all         all         IP_ADDRESS/32       md5
OR
host    all         all         IP_ADDRESS1/32       md5
host    all         all         IP_ADDRESS2/32       md5
host    all         all         IP_ADDRESS3/32       md5
host    all         all         IP_ADDRESS4/32       md5
....
which could be replaced
host    all         all         IP_ADDRESS1/24       md5

Regards

On Friday, February 14, 2014 4:39 PM, Bruce Momjian <bruce(at)momjian(dot)us> wrote:

On Fri, Feb 14, 2014 at 07:28:38AM -0800, salah jubeh wrote:

> Hello,
>
> I am looking for a tool that could help me in analyzing the pg_hab.conf file.
> For example , detecting duplicates, unused entries, and overlaping entries.

We are in the process of talking about this:

    http://www.postgresql.org/message-id/86fvnm5t44.fsf@jerry.enova.com

I know of no tool currently available.

--
  Bruce Momjian  <bruce(at)momjian(dot)us>        http://momjian.us
  EnterpriseDB                            http://enterprisedb.com

  + Everyone has their own god. +