Home > mailing lists

pg_hba.conf hostname todo - Mailing list pgsql-hackers

From	Joshua D. Drake
Subject	pg_hba.conf hostname todo
Date	December 27, 2006 20:23:07
Msg-id	1167254720.12075.46.camel@localhost.localdomain Whole thread Raw
Responses	Re: pg_hba.conf hostname todo (Stephen Frost <sfrost@snowman.net>) Re: pg_hba.conf hostname todo (Andrew Dunstan <andrew@dunslane.net>)
List	pgsql-hackers

Tree view

Hello,

Per the TODO list:

Allow pg_hba.conf to specify host names along with IP addresses 

Host name lookup could occur when the postmaster reads the pg_hba.conf
file, or when the backend starts. Another solution would be to reverse
lookup the connection IP and check that hostname against the host names
in pg_hba.conf. We could also then check that the host name maps to the
IP address.


I was considering trying to attack this for 8.3. My thoughts are the
following:

Allow one to specify a FQDN or a simple wild card DN. E.g;
*.commandprompt.com.

A valid entry would look like this:

host    all         all         *.commandprompt.com          trust
host    all        all        www1.postgresql.org         md5

Thoughts?

Joshua D. Drake

-- 
     === The PostgreSQL Company: Command Prompt, Inc. ===
Sales/Support: +1.503.667.4564 || 24x7/Emergency: +1.800.492.2240
Providing the most comprehensive  PostgreSQL solutions since 1997            http://www.commandprompt.com/

Donate to the PostgreSQL Project: http://www.postgresql.org/about/donate

pgsql-hackers by date:

From: mark@mark.mielke.cc
Date: 27 December 2006, 19:44:49
Subject: Re: Bitmap index thoughts

From: Bruce Momjian
Date: 27 December 2006, 20:36:17
Subject: Re: [PATCHES] [BUGS] BUG #2846: inconsistent and confusing

pg_hba.conf hostname todo - Mailing list pgsql-hackers

Previous

Next