| From: | "Dave Page" <dpage(at)vale-housing(dot)co(dot)uk> |
|---|---|
| To: | <pgsql-odbc(at)postgresql(dot)org> |
| Cc: | "Hiroshi Inoue" <inoue(at)tpf(dot)co(dot)jp>, "Magnus Hagander" <mha(at)sollentuna(dot)net> |
| Subject: | CVS-tip; SSLmode & Kerberos |
| Date: | 2006-04-13 07:54:06 |
| Message-ID: | E7F85A1B5FF8D44C8A1AF6885BC9A0E4011C9C76@ratbert.vale-housing.co.uk |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-odbc |
Hi,
I've just had some testing done by Magnus Hagander who uses psqlODBC in
a kerberos environment and a couple of minor issues came to light:
- Kerberos authentication (and therefore other features of libpq like
pgpass) can only be used if sslmode != d. This is because the original
CC_connect code is used instead of libpq in this case. Is there any
reason to not use libpq all the time regardless of sslmode (if it's
available of course)?
- sslmode defaults to 'disable'. If libpq is available, 'prefer' would
seem the more secure default option. Any reason we should not change
this as well?
Regards, Dave.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | noreply | 2006-04-13 09:16:57 | [ psqlodbc-Bugs-1000611 ] Empty exception thrown when no password supplied |
| Previous Message | Dave Page | 2006-04-13 07:17:22 | Re: ODBC Drivers |