Home > mailing lists

Re: Postgresql 8.4 GSSAPI auth with fallback to password prompting? - Mailing list pgsql-admin

From	Stephen Frost
Subject	Re: Postgresql 8.4 GSSAPI auth with fallback to password prompting?
Date	March 24, 2013 21:47:14
Msg-id	20130324184710.GI4361@tamriel.snowman.net Whole thread Raw
In response to	Postgresql 8.4 GSSAPI auth with fallback to password prompting? (Tim Watts <tim.j.watts@kcl.ac.uk>)
List	pgsql-admin

Tree view

Tim,

* Tim Watts (tim.j.watts@kcl.ac.uk) wrote:
> Is it possible to specify GSSAPI auth (with MIT kerberos as the
> backend) but get Postgresql to fallback to prompting for a password
> if a kerberos ticket cannot be supplied by the client - eg because
> the client cannot do GSSAPI or because the client is not part of the
> kerberos realm?

You're right- it's a 'no'.  It would also really degrade the security
which you get with Kerberos as you'd undoubtably end up with clients
storing those passwords and using them routinely instead of using
Kerberos.

    Thanks,

        Stephen

Attachment

signature.asc

pgsql-admin by date:

From: Tim Watts
Date: 21 March 2013, 15:22:33
Subject: Postgresql 8.4 GSSAPI auth with fallback to password prompting?

From: Andrzej Zawadzki
Date: 24 March 2013, 22:30:45
Subject: Re: Problem with data migration from 9.1 to 9.2

Re: Postgresql 8.4 GSSAPI auth with fallback to password prompting? - Mailing list pgsql-admin

Attachment

Previous

Next