Home > mailing lists

Re: "trust" authentication in pg_hba.conf - Mailing list pgsql-general

From	John R Pierce
Subject	Re: "trust" authentication in pg_hba.conf
Date	November 25, 2015 00:37:23
Msg-id	5654D8A0.6030405@hogranch.com Whole thread Raw
In response to	"trust" authentication in pg_hba.conf (Chris Withers <chris@simplistix.co.uk>)
List	pgsql-general

Tree view

On 11/24/2015 1:33 PM, Chris Withers wrote:
>
> What's the default contents of pg_hba.conf that postgres ships with?
>
> I've been to it contains 'trust' for all local connections.
> Is this wise? Anyone who can get a shell on your database server can
> connect to any database as any user?

it varies with distributions, and it can be specified via the -A/--auth
argument to initdb.   most distributions I've seen use 'peer' for local
connections by default.

--
john r pierce, recycling bits in santa cruz

pgsql-general by date:

From: Chris Withers
Date: 25 November 2015, 00:33:53
Subject: "trust" authentication in pg_hba.conf

From: anj patnaik
Date: 25 November 2015, 00:44:19
Subject: Re: error messages not getting logged when running script from cron

Re: "trust" authentication in pg_hba.conf - Mailing list pgsql-general

Previous

Next