Quick Links

Re: allow specifying direct role membership in pg_hba.conf

From:	Stephen Frost <sfrost(at)snowman(dot)net>
To:	Chapman Flack <chap(at)anastigmatix(dot)net>
Cc:	"Bossart, Nathan" <bossartn(at)amazon(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: allow specifying direct role membership in pg_hba.conf
Date:	2021-05-14 18:57:48
Message-ID:	20210514185748.GK20766@tamriel.snowman.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Greetings,

* Chapman Flack (chap(at)anastigmatix(dot)net) wrote:
> If pg_hba syntax changes are being entertained, I would love to be able
> to set ssl_min_protocol_version locally in a hostssl rule.
>
> Some clients at $work are stuck with ancient SSL libraries, but I would
> much rather be able to weaken ssl_min_protocol_version just for them
> than do it globally.

This (unlike what was actually proposed) does seem like it'd be a useful
improvement. Not sure exaclty how it would work but I'm generally on
board with the idea.

Thanks,

Stephen

In response to

Re: allow specifying direct role membership in pg_hba.conf at 2021-05-14 15:33:34 from Chapman Flack

Responses

Re: allow specifying direct role membership in pg_hba.conf at 2021-05-14 19:35:26 from Tom Lane
Re: allow specifying direct role membership in pg_hba.conf at 2021-05-17 20:15:59 from Magnus Hagander

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Stephen Frost	2021-05-14 19:00:01	Re: allow specifying direct role membership in pg_hba.conf
Previous Message	Pavel Stehule	2021-05-14 17:39:46	Re: compute_query_id and pg_stat_statements