Re: BUG #4824: KRB5/GSSAPI authentication fails when user != principal

From: Magnus Hagander <magnus(at)hagander(dot)net>
To: Peter Koczan <pjkoczan(at)gmail(dot)com>
Cc: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-bugs(at)postgresql(dot)org
Subject: Re: BUG #4824: KRB5/GSSAPI authentication fails when user != principal
Date: 2009-05-27 20:46:23
Message-ID: 4A1DA69F.8080403@hagander.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-bugs

Peter Koczan wrote:
> I don't know if it's much use now, but here you go.

<snip>

> May 27 15:37:29 mitchell postgres[30609]: [629-1] LOG: provided
> username (koczan) and authenticated username (strivia) don't match
> May 27 15:37:29 mitchell postgres[30609]: [630-1] LOG: connection
> authorized: user=strivia database=postgres

This seems to confirm my suspicions. We detect that the username is
wrong, but we still don't reject the connection.

//Magnus

In response to

Browse pgsql-bugs by date

  From Date Subject
Next Message Tom Lane 2009-05-27 20:51:33 Re: BUG #4824: KRB5/GSSAPI authentication fails when user != principal
Previous Message Peter Koczan 2009-05-27 20:40:40 Re: BUG #4824: KRB5/GSSAPI authentication fails when user != principal