Home > mailing lists

Re: BUG #17740: Connecting postgresql 13 with different psql versions - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #17740: Connecting postgresql 13 with different psql versions
Date	January 9, 2023 18:19:25
Msg-id	4092738.1673277565@sss.pgh.pa.us Whole thread Raw
In response to	BUG #17740: Connecting postgresql 13 with different psql versions (PG Bug reporting form <noreply@postgresql.org>)
Responses	Re: BUG #17740: Connecting postgresql 13 with different psql versions
List	pgsql-bugs

Tree view

PG Bug reporting form <noreply@postgresql.org> writes:
> With following entries in pg_hba.conf, psql v13 is prompting for password
> for Kerberos connections, whereas psql v11 succeeds connecting without any
> issue.

> local all pgbkp peer map=pgbackrest
> hostssl all +citi_pg_app_read 0.0.0.0/0 gss map=krb
> host all all 0.0.0.0/0 scram-sha-256

> [kdc_test_fid@icl-actpsql-vm1 /psql13]$ psql -U app_kdc_test_fid -h x.x.x -d
> postgres -p 1524
> Password for user app_kdc_test_fid:

I suspect the v13 libpq is trying GSSAPI encryption before SSL encryption,
so it falls through the hostssl line and ends up at the catchall.

            regards, tom lane

pgsql-bugs by date:

From: Tom Lane
Date: 09 January 2023, 18:13:01
Subject: Re: BUG #17743: Bad RIP VALUE

From: Tom Lane
Date: 09 January 2023, 18:40:08
Subject: Re: BUG #17739: postgres ts_headline function is not returning matches it should during full text search

Re: BUG #17740: Connecting postgresql 13 with different psql versions - Mailing list pgsql-bugs

Previous

Next