Hello,
Per the TODO list:
Allow pg_hba.conf to specify host names along with IP addresses
Host name lookup could occur when the postmaster reads the pg_hba.conf
file, or when the backend starts. Another solution would be to reverse
lookup the connection IP and check that hostname against the host names
in pg_hba.conf. We could also then check that the host name maps to the
IP address.
I was considering trying to attack this for 8.3. My thoughts are the
following:
Allow one to specify a FQDN or a simple wild card DN. E.g;
*.commandprompt.com.
A valid entry would look like this:
host all all *.commandprompt.com trust
host all all www1.postgresql.org md5
Thoughts?
Joshua D. Drake
--
=== The PostgreSQL Company: Command Prompt, Inc. ===
Sales/Support: +1.503.667.4564 || 24x7/Emergency: +1.800.492.2240
Providing the most comprehensive PostgreSQL solutions since 1997 http://www.commandprompt.com/
Donate to the PostgreSQL Project: http://www.postgresql.org/about/donate
