Home > mailing lists

Re: Connect to postgres from a dynamic IP - Mailing list pgsql-general

From	paul rivers
Subject	Re: Connect to postgres from a dynamic IP
Date	March 3, 2008 15:17:16
Msg-id	47CC247F.9090005@gmail.com Whole thread Raw
In response to	Re: Connect to postgres from a dynamic IP (Jorge Godoy <jgodoy@gmail.com>)
Responses	Re: Connect to postgres from a dynamic IP (Collin <adderd@kkmfg.com>) Re: Connect to postgres from a dynamic IP (Jorge Godoy <jgodoy@gmail.com>)
List	pgsql-general

Tree view

Jorge Godoy wrote:
> Em Monday 03 March 2008 08:08:36 Raymond O'Donnell escreveu:
>
>> On 03/03/2008 11:01, dfx wrote:
>>
>>> The question il: Is there a method to avoid to insert the addesses of
>>> the clients in the pg_hba.conf and to allow connections from internet
>>> with security assured only by username and password?
>>>
>> Yes, that's what people have been explaining: you insert a line
>> something like:
>>
>>    host  [database]   [user]   0.0.0.0/0   md5
>>
>
> But make it "hostssl" instead of "host", to require some cryptography in the
> channel used, specially to authenticate the connection.
>
> Opening your access to everyone without crypto sounds like something you don't
> want to do.  Specially if users can change their own passwords...

My understanding is no password is sent in the clear with md5 per:

http://www.postgresql.org/docs/8.3/interactive/auth-methods.html#AUTH-PASSWORD


Paul

pgsql-general by date:

From: shadrack
Date: 03 March 2008, 13:47:30
Subject: Re: beginner postgis question lat/lon

From: paul rivers
Date: 03 March 2008, 15:40:59
Subject: Re: Connect to postgres from a dynamic IP

Re: Connect to postgres from a dynamic IP - Mailing list pgsql-general

Previous

Next