Home > mailing lists

Re: BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication
Date	September 7, 2023 20:17:33
Msg-id	1722734.1694107053@sss.pgh.pa.us Whole thread Raw
In response to	BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication (PG Bug reporting form <noreply@postgresql.org>)
List	pgsql-bugs

Tree view

PG Bug reporting form <noreply@postgresql.org> writes:
> When connecting to a PostgreSQL server (version 14) configured to only
> accept SSL connections, if a user provides an incorrect password, the psql
> client (version 14) returns two error messages in succession. The first
> message correctly indicates a password authentication failure, but the
> second suggests an unexpected non-SSL connection attempt.

This is libpq's (not psql's) default behavior.  If you don't like it,
you need to set the sslmode parameter in the connection string to prevent
non-SSL connection attempts.  See

https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS

            regards, tom lane

pgsql-bugs by date:

From: PG Bug reporting form
Date: 07 September 2023, 19:44:13
Subject: BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication

From: Laurenz Albe
Date: 07 September 2023, 23:50:36
Subject: Re: BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication

Re: BUG #18095: Unintended non-SSL connection attempt by psql cli command after a failed password authentication - Mailing list pgsql-bugs

Previous

Next