Re: server authentication over Unix-domain sockets - Mailing list pgsql-hackers

From Stephen Frost
Subject Re: server authentication over Unix-domain sockets
Date
Msg-id 20100611121157.GQ21875@tamriel.snowman.net
Whole thread Raw
In response to Re: server authentication over Unix-domain sockets  (Magnus Hagander <magnus@hagander.net>)
Responses Re: server authentication over Unix-domain sockets
List pgsql-hackers
* Magnus Hagander (magnus@hagander.net) wrote:
> On Fri, Jun 11, 2010 at 14:07, Stephen Frost <sfrost@snowman.net> wrote:
> > I definitely like the idea but I dislike requiring the user to do
> > something to implement it.  Thinking about how packagers might want to
> > use it, could we make it possible to build it defaulted to a specific
> > value (eg: 'postgres' on Debian) and allow users a way to override
> > and/or unset it?
>
> Well, even if we don't put that in, the packager could export a global
> PGREQUIREPEER environment variable.

Yeahhhh, no, that's a crappy solution, sorry. :)  I've been down that
road with people trying to monkey with /etc/bashrc; oh wait, not
everyone uses bash, and having every package screw with that stuff is
equally horrible.  Admittedly, in this specific case, Debian could
implement what you're talking about in it's wrapper system, maybe, but I
still don't like it and if people don't use the wrapper (I can imagine
cases why that might happen, tho I havn't ever had to myself), they
wouldn't get the benefit..
Thanks,
    Stephen

pgsql-hackers by date:

Previous
From: "Pr, Solaiyappan (NSN - IN/Bangalore)"
Date:
Subject: PG 9.1 tentative timeline
Next
From: Stephen Frost
Date:
Subject: Re: PG 9.1 tentative timeline