Re: Bugtraq: Having Fun With PostgreSQL - Mailing list pgsql-hackers

From Magnus Hagander
Subject Re: Bugtraq: Having Fun With PostgreSQL
Date
Msg-id 20070618061316.B3576DCCA7F@svr2.hagander.net
Whole thread Raw
In response to Re: Bugtraq: Having Fun With PostgreSQL  (Tom Lane <tgl@sss.pgh.pa.us>)
Responses Re: Bugtraq: Having Fun With PostgreSQL
List pgsql-hackers
> >> That won't help; that would introduce the "embarrassment" of having a
> >> known default password.
> 
> > No it wouldn't unless the packagers set it up to do that. My point is 
> > that when a packager (or source) runs initdb, it would prompt for the 
> > postgres user password.
> 
> Practically every existing packaging of PG tries to run initdb as a
> hidden, behind-the-scenes, definitely not-interactive procedure.
> 

afaik, practically every existing packaging of pg has *already* solved the problem and does not set trust as default
anyway.ident sameuser I think is the most 
 
common.

One thing I've thought about doing is to remove the default in initdb completely and *force* the user to choose auth
type.Packagers can then just use that to 
 
set ident or whatever. and interactive users can pick trust if they really need it, but it will be a known choice.

/Magnus


pgsql-hackers by date:

Previous
From: Tom Lane
Date:
Subject: Re: Bugtraq: Having Fun With PostgreSQL
Next
From: Heikki Linnakangas
Date:
Subject: Tuple alignment