Quick Links

Re: [PATCH] Log details for client certificate failures

From:	Andres Freund <andres(at)anarazel(dot)de>
To:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:	Jacob Champion <jchampion(at)timescale(dot)com>, Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: [PATCH] Log details for client certificate failures
Date:	2022-07-19 17:09:54
Message-ID:	20220719170954.nshvmok3tymxdpl3@awork3.anarazel.de
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Hi,

On 2022-07-19 12:39:43 -0400, Tom Lane wrote:
> Having said that, I struggle to see why we are panicking about badly
> encoded log data from this source while blithely ignoring the problems
> posed by non-ASCII role names, database names, and tablespace names.

I think we should fix these as well. I'm not as concerned about post-auth
encoding issues (i.e. tablespace name) as about pre-auth data (role name,
database name) - obviously being allowed to log in already is a pretty good
filter...

Greetings,

Andres Freund

In response to

Re: [PATCH] Log details for client certificate failures at 2022-07-19 16:39:43 from Tom Lane

Responses

Re: [PATCH] Log details for client certificate failures at 2022-07-19 22:08:38 from Jacob Champion

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Bruce Momjian	2022-07-19 17:24:30	Re: First draft of the PG 15 release notes
Previous Message	Nathan Bossart	2022-07-19 16:58:28	Re: Use "WAL segment" instead of "log segment" consistently in user-facing messages