| From: | Chapman Flack <chap(at)anastigmatix(dot)net> |
|---|---|
| To: | Robert Haas <robertmhaas(at)gmail(dot)com>, Marisa Emerson <mje(at)insec(dot)sh> |
| Cc: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Proposal: BSD Authentication support |
| Date: | 2016-01-15 04:59:40 |
| Message-ID: | 56987CBC.2060105@anastigmatix.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Forgive my late comment ... I haven't used the PAM support in postgresql
either, or I'd know. PAM (I know for sure), and I suppose similarly BSD
Authentication, models a generalized auth interaction where a given
authentication module can send a number of arbitrary prompts back to the
client (via callbacks so different protocols and UIs can be used), and
demand a number of arbitrary responses, so that a variety of authentication
schemes can easily be supported.
Is the PostgreSQL support (for either PAM or BSD Authentication) able to
handle that in its designed generality, or only for the case (number of
requested items = 1, item 1 = a password)?
Could the general form be handled with the existing fe/be protocol,
or would the protocol have to grow?
-Chap
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David Rowley | 2016-01-15 05:40:26 | Re: Combining Aggregates |
| Previous Message | Haribabu Kommi | 2016-01-15 04:46:22 | Re: Combining Aggregates |