| From: | Karsten Hilbert <Karsten(dot)Hilbert(at)gmx(dot)net> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: ident authentication problem |
| Date: | 2004-04-22 11:58:14 |
| Message-ID: | 20040422135814.A670@hermes.hilbert.loc |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
> > > Do yourself a favour and change authentication type in pg_hba.conf to
> > >
> > > local all trust
> > If you follow this sage advice you'll open up your financial
> > data to anyone happening to have an account on the machine in
> > question. Anyone. Not just people who also happen to have
> > *PostgreSQL* DB accounts.
>
> How, exactly, is that?
a) it seems SQL ledger wants to store data in PostgreSQL
b) I assume it wants to store *financial* data
c) local/all/trust means *all* *local* users are *trusted*, eg
don't require any authentication, hence system account foo
can access *all* databases (including the SQL-ledger one)
even though foo does not have a corresponding DB account
Assuming, that there aren't any schema level restrictions
(GRANTs) set up which may or may not be the case. Forgot to
mention that point earlier on.
Or am I missing something ?
Karsten
--
GPG key ID E4071346 @ wwwkeys.pgp.net
E167 67FD A291 2BEA 73BD 4537 78B9 A9F9 E407 1346
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Harald Fuchs | 2004-04-22 12:25:49 | Re: Unicode problem ??? |
| Previous Message | John Sidney-Woollett | 2004-04-22 11:17:17 | Unicode + LC_COLLATE |