Quick Links

Re: Proposal: Support custom authentication methods using hooks

From:	Jeff Davis <pgsql(at)j-davis(dot)com>
To:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:	samay sharma <smilingsamay(at)gmail(dot)com>, pgsql-hackers(at)lists(dot)postgresql(dot)org
Subject:	Re: Proposal: Support custom authentication methods using hooks
Date:	2022-02-25 17:33:45
Message-ID:	54dc198b56a87e31e9625405383f04a8c6589b8b.camel@j-davis.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On Thu, 2022-02-24 at 20:47 -0500, Tom Lane wrote:
> ... and, since we can't readily enforce that the client only sends
> those cleartext passwords over suitably-encrypted connections, this
> could easily be a net negative for security. Not sure that I think
> it's a good idea.

I don't understand your point. Can't you just use "hostssl" rather than
"host"?

Also there are some useful cases that don't really require SSL, like
when the client and host are on the same machine, or if you have a
network secured some other way.

Regards,
Jeff Davis

In response to

Re: Proposal: Support custom authentication methods using hooks at 2022-02-25 01:47:54 from Tom Lane

Responses

Re: Proposal: Support custom authentication methods using hooks at 2022-02-25 17:39:24 from Tom Lane
Re: Proposal: Support custom authentication methods using hooks at 2022-02-25 17:40:53 from Andres Freund

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Tom Lane	2022-02-25 17:39:24	Re: Proposal: Support custom authentication methods using hooks
Previous Message	Jeff Davis	2022-02-25 17:29:24	Re: Proposal: Support custom authentication methods using hooks