Quick Links

Re: Unfriendly handling of pg_hba SSL options with SSL off

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Bruce Momjian <bruce(at)momjian(dot)us>
Cc:	Peter Eisentraut <peter_e(at)gmx(dot)net>, Robert Haas <robertmhaas(at)gmail(dot)com>, pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Unfriendly handling of pg_hba SSL options with SSL off
Date:	2011-05-10 03:39:42
Message-ID:	7469.1304998782@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Bruce Momjian <bruce(at)momjian(dot)us> writes:
> Late reply, but we are basically ignoring 'local' lines if the build
> doesn't support unix domain sockets (windows), but throwing an error for
> hostssl usage if ssl is not compiled in. Is the only logic here that
> 'local' is part of the default pg_hba.conf and hostssl is not? Is that
> good logic?

I wouldn't have a problem with making the Windows port throw an error
for "local" lines. We'd have to fix initdb to remove that line from the
sample file (if it doesn't already), but that's surely not hard.

regards, tom lane

In response to

Re: Unfriendly handling of pg_hba SSL options with SSL off at 2011-05-10 00:15:23 from Bruce Momjian

Responses

Re: Unfriendly handling of pg_hba SSL options with SSL off at 2011-05-11 18:48:33 from Magnus Hagander

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Pavel Stehule	2011-05-10 03:58:54	Re: "stored procedures" - use cases?
Previous Message	Tom Lane	2011-05-10 03:32:28	Re: 4.1beta1: ANYARRAY disallowed for DOMAIN types which happen to be arrays