Quick Links

Re: [PoC] Let libpq reject unexpected authentication requests

From:	Jacob Champion <jchampion(at)timescale(dot)com>
To:	"pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Cc:	Michael Paquier <michael(at)paquier(dot)xyz>, "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com>
Subject:	Re: [PoC] Let libpq reject unexpected authentication requests
Date:	2022-06-27 21:40:01
Message-ID:	CAAWbhmhjuHUfCs4NbB6p_MeuAgqq+et17SN=QR52HRH8zcMfFQ@mail.gmail.com
Views:	Whole Thread \| Raw Message \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On Mon, Jun 27, 2022 at 12:05 PM Jacob Champion <jchampion(at)timescale(dot)com> wrote:
> v5 adds a second patch which implements a client-certificate analogue
> to gssencmode; I've named it sslcertmode.

...and v6 fixes check-world, because I always forget about postgres_fdw.

--Jacob

Attachment	Content-Type	Size
since-v5.diff.txt	text/plain	1.7 KB
v6-0001-libpq-let-client-reject-unexpected-auth-methods.patch	text/x-patch	35.2 KB
v6-0002-Add-sslcertmode-option-for-client-certificates.patch	text/x-patch	16.8 KB

In response to

Re: [PoC] Let libpq reject unexpected authentication requests at 2022-06-27 19:05:57 from Jacob Champion

Responses

Re: [PoC] Let libpq reject unexpected authentication requests at 2022-06-29 13:36:08 from Peter Eisentraut

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Justin Pryzby	2022-06-27 23:30:03	Re: pg_upgrade (12->14) fails on aggregate
Previous Message	Hannu Krosing	2022-06-27 21:36:53	Re: Hardening PostgreSQL via (optional) ban on local file system access