From: | Jorge Godoy <jgodoy(at)gmail(dot)com> |
---|---|
To: | pgsql-general(at)postgresql(dot)org, rod(at)iol(dot)ie |
Cc: | dfx(at)dfx(dot)it |
Subject: | Re: Connect to postgres from a dynamic IP |
Date: | 2008-03-03 11:33:28 |
Message-ID: | 200803030833.29319.jgodoy@gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-general |
Em Monday 03 March 2008 08:08:36 Raymond O'Donnell escreveu:
> On 03/03/2008 11:01, dfx wrote:
> > The question il: Is there a method to avoid to insert the addesses of
> > the clients in the pg_hba.conf and to allow connections from internet
> > with security assured only by username and password?
>
> Yes, that's what people have been explaining: you insert a line
> something like:
>
> host [database] [user] 0.0.0.0/0 md5
But make it "hostssl" instead of "host", to require some cryptography in the
channel used, specially to authenticate the connection.
Opening your access to everyone without crypto sounds like something you don't
want to do. Specially if users can change their own passwords...
--
Jorge Godoy <jgodoy(at)gmail(dot)com>
From | Date | Subject | |
---|---|---|---|
Next Message | Richard Huxton | 2008-03-03 12:04:16 | Re: how to auto GRANT custom ACL on a new table? |
Previous Message | Raymond O'Donnell | 2008-03-03 11:08:36 | Re: Connect to postgres from a dynamic IP |