Home > mailing lists

Re: rolcanlogin vs. the flat password file - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: rolcanlogin vs. the flat password file
Date	October 14, 2007 20:57:09
Msg-id	12456.1192395385@sss.pgh.pa.us Whole thread Raw
In response to	Re: rolcanlogin vs. the flat password file (Michael Glaesemann <grzm@seespotcode.net>)
List	pgsql-hackers

Tree view

Michael Glaesemann <grzm@seespotcode.net> writes:
> Would there be a difference in how this is logged and how it's  
> reported to the user?

Not without making all the same infrastructure changes that would be
needed to tell the user something different than now.  As things stand,
the password auth code can't tell the difference between a nonexistent
role and a nologin role; neither one has an entry in the flat file.
If we dropped the filtering in flatfiles.c, then a nologin role would
have an entry, but most likely without a password, so you'd still just
see "password auth failed".
        regards, tom lane

pgsql-hackers by date:

From: Stephen Frost
Date: 14 October 2007, 20:51:17
Subject: Re: rolcanlogin vs. the flat password file

From: Tom Lane
Date: 14 October 2007, 21:02:48
Subject: Re: rolcanlogin vs. the flat password file

Re: rolcanlogin vs. the flat password file - Mailing list pgsql-hackers

Previous

Next