Home > mailing lists

Re: confirming security. - Mailing list pgsql-general

From	John R Pierce
Subject	Re: confirming security.
Date	February 22, 2013 22:35:22
Msg-id	5127C86C.4020505@hogranch.com Whole thread Raw
In response to	Re: confirming security. (Maz Mohammadi <mmohammadi@pentaho.com>)
Responses	Re: confirming security. (Maz Mohammadi <mmohammadi@pentaho.com>)
List	pgsql-general

Tree view

On 2/22/2013 8:13 AM, Maz Mohammadi wrote:
> Ahhh yes....it is now...
>
> ===========
> # TYPE  DATABASE        USER            ADDRESS                 METHOD
> # "local" is for Unix domain socket connections only
> #local   all             all                                     trust
> # IPv4 local connections:
> #host    all             all             127.0.0.1/32            trust
> # IPv6 local connections:
> #host    all             all             ::1/128                 trust
> # Allow replication connections from localhost, by a user with the
> # replication privilege.
> #local   replication     postgres-xc                                trust
> #host    replication     postgres-xc        127.0.0.1/32            trust
> #host    replication     postgres-xc        ::1/128                 trust
> hostssl all             all             127.0.0.1/32            cert

I would leave a local line in front of that like..

local   all postgres peer

this will allow the postgres user to log on regardless when using unix
sockets rather than tcp/ip (eg, when not specifying any -h hostname).
handy for database administration and fixing problems.



--
john r pierce                                      37N 122W
somewhere on the middle of the left coast

pgsql-general by date:

From: Jeff Janes
Date: 22 February 2013, 20:27:23
Subject: Re: autoanalyze criteria

From: Kevin Grittner
Date: 22 February 2013, 22:59:06
Subject: Re: Need help extripating plpgsql

Re: confirming security. - Mailing list pgsql-general

Previous

Next