| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Allowing usernames in pg_hba.conf |
| Date: | 2002-03-11 02:32:02 |
| Message-ID: | Pine.LNX.4.30.0203102128280.684-100000@peter.localdomain |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Tom Lane writes:
> This is definitely stressing pg_hba past its design limits --- heck, the
> name of the file isn't even appropriate anymore, if usernames are part
> of the match criteria. Rather than contorting things to maintain a
> pretense of backwards compatibility, it's time to abandon the current
> file format, change the name, and start over.
The pg_hba.conf thing is slowly growing to become a bad excuse for a
completely general authentication system, such as PAM. Instead of
creating our own, maybe we could rip off the "BSD authentication" system
from some free *BSD. I haven't seen it, but it's supposed to be like (or
"better than") PAM.
--
Peter Eisentraut peter_e(at)gmx(dot)net
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2002-03-11 02:32:03 | Re: Rationalizing EXPLAIN VERBOSE output |
| Previous Message | Tom Lane | 2002-03-11 02:28:49 | Re: Rationalizing EXPLAIN VERBOSE output |