Re: [PoC] Let libpq reject unexpected authentication requests

From:	Jacob Champion <jchampion(at)timescale(dot)com>
To:	Michael Paquier <michael(at)paquier(dot)xyz>
Cc:	Aleksander Alekseev <aleksander(at)timescale(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>, Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>, "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com>
Subject:	Re: [PoC] Let libpq reject unexpected authentication requests
Date:	2023-02-16 18:57:55
Message-ID:	CAAWbhmihPDBe+sHPxY0N+9YUj8MoRErdeSYjMeiic0evLWYtmQ@mail.gmail.com
Views:	Raw Message | Whole Thread | Download mbox | Resend email
Thread:	2022-03-05 01:04:05 from Jacob Champion <pchampion(at)vmware(dot)com> 📎  2022-03-05 01:19:26 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>   2022-03-05 06:20:29 from Michael Paquier <michael(at)paquier(dot)xyz>   2022-03-05 12:46:55 from Andrew Dunstan <andrew(at)dunslane(dot)net>    2022-03-05 15:12:20 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>  2022-03-07 10:44:00 from Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at>   2022-03-23 21:31:32 from Jacob Champion <pchampion(at)vmware(dot)com>    2022-03-24 05:17:04 from Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at>  2022-06-01 07:55:09 from Michael Paquier <michael(at)paquier(dot)xyz>   2022-06-01 15:11:28 from Jacob Champion <jchampion(at)timescale(dot)com>    2022-06-07 21:22:28 from Jacob Champion <jchampion(at)timescale(dot)com> 📎     2022-06-09 04:58:00 from Michael Paquier <michael(at)paquier(dot)xyz>      2022-06-09 23:29:38 from Jacob Champion <jchampion(at)timescale(dot)com>       2022-06-14 04:59:53 from Michael Paquier <michael(at)paquier(dot)xyz>        2022-06-22 23:36:00 from Jacob Champion <jchampion(at)timescale(dot)com> 📎       2022-06-23 00:56:18 from "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com>        2022-06-23 17:33:57 from Jacob Champion <jchampion(at)timescale(dot)com>         2022-06-24 19:17:08 from Jacob Champion <jchampion(at)timescale(dot)com> 📎          2022-06-27 19:05:57 from Jacob Champion <jchampion(at)timescale(dot)com> 📎           2022-06-27 21:40:01 from Jacob Champion <jchampion(at)timescale(dot)com> 📎            2022-06-29 13:36:08 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>             2022-06-30 23:26:54 from Jacob Champion <jchampion(at)timescale(dot)com> 📎              2022-07-19 06:37:42 from Michael Paquier <michael(at)paquier(dot)xyz>              2022-09-08 13:25:01 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>               2022-09-08 18:18:42 from Jacob Champion <jchampion(at)timescale(dot)com>                2022-09-16 14:56:20 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>                 2022-09-16 20:29:29 from Jacob Champion <jchampion(at)timescale(dot)com>                  2022-09-21 15:33:55 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                   2022-09-21 22:36:41 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>                    2022-09-21 23:37:58 from Jacob Champion <jchampion(at)timescale(dot)com>                     2022-09-22 11:52:23 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>                      2022-09-23 00:02:30 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                       2022-10-05 13:33:45 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>                        2022-10-12 16:40:05 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                         2022-10-20 18:36:34 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                          2022-11-11 13:52:56 from Aleksander Alekseev <aleksander(at)timescale(dot)com>                           2022-11-12 00:11:07 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                            2022-11-12 06:57:06 from Aleksander Alekseev <aleksander(at)timescale(dot)com>                             2022-11-14 19:01:34 from Jacob Champion <jchampion(at)timescale(dot)com>                          2022-11-16 07:06:54 from Michael Paquier <michael(at)paquier(dot)xyz>                           2022-11-16 17:26:01 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                            2023-01-31 09:59:10 from Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com>                             2023-01-31 11:03:54 from Aleksander Alekseev <aleksander(at)timescale(dot)com>                              2023-01-31 13:19:50 from Aleksander Alekseev <aleksander(at)timescale(dot)com>                               2023-02-01 00:00:42 from Jacob Champion <jchampion(at)timescale(dot)com>                              2023-02-01 00:06:00 from Michael Paquier <michael(at)paquier(dot)xyz>                               2023-02-16 18:57:55 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                                2023-02-28 23:38:21 from Jacob Champion <jchampion(at)timescale(dot)com>                                 2023-03-04 02:35:30 from Michael Paquier <michael(at)paquier(dot)xyz>                                  2023-03-07 00:02:25 from Jacob Champion <jchampion(at)timescale(dot)com>                                   2023-03-09 06:35:26 from Michael Paquier <michael(at)paquier(dot)xyz> 📎                                    2023-03-10 22:32:17 from Jacob Champion <jchampion(at)timescale(dot)com>                                     2023-03-10 23:09:33 from Michael Paquier <michael(at)paquier(dot)xyz>                                      2023-03-10 23:16:20 from Jacob Champion <jchampion(at)timescale(dot)com>                                       2023-03-13 19:38:10 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                                        2023-03-14 05:39:07 from Michael Paquier <michael(at)paquier(dot)xyz>                                         2023-03-14 19:14:40 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                                          2023-03-22 06:00:55 from Michael Paquier <michael(at)paquier(dot)xyz>                                           2023-03-23 22:40:55 from Jacob Champion <jchampion(at)timescale(dot)com> 📎                                            2023-03-24 05:18:02 from Michael Paquier <michael(at)paquier(dot)xyz>                                             2023-03-24 16:30:06 from Jacob Champion <jchampion(at)timescale(dot)com>                                              2023-03-25 02:59:10 from Michael Paquier <michael(at)paquier(dot)xyz>
Lists:	pgsql-hackers

Attachment	Content-Type	Size
since-v13.diff.txt	text/plain	1.8 KB
v14-0003-require_auth-decouple-SASL-and-SCRAM.patch	text/x-patch	8.2 KB
v14-0002-Add-sslcertmode-option-for-client-certificates.patch	text/x-patch	16.9 KB
v14-0001-libpq-let-client-reject-unexpected-auth-methods.patch	text/x-patch	33.3 KB

In response to

• Re: [PoC] Let libpq reject unexpected authentication requests at 2023-02-01 00:06:00 from Michael Paquier

Responses

• Re: [PoC] Let libpq reject unexpected authentication requests at 2023-02-28 23:38:21 from Jacob Champion

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Andres Freund	2023-02-16 19:00:20	Re: Use pg_pwritev_with_retry() instead of write() in dir_open_for_write() to avoid partial writes?
Previous Message	Jacob Champion	2023-02-16 18:38:25	Re: [PATCH] Add `verify-system` sslmode to use system CA pool for server cert