Andrew Dunstan <andrew@dunslane.net> writes:
> On 05/14/2015 11:59 AM, Robert Haas wrote:
>> On Thu, May 14, 2015 at 5:16 AM, Denis Kirjanov <kda@itsirius.su> wrote:
>>> Is it possible to restrict the trust auth method to accept local connections only using the selinux policy?
>> I would guess that it probably is, but I can't tell you how.
> I would have guessed not :-)
Yeah. AFAIK selinux is strictly a kernel-level facility so it can only
enforce things that are visible to the kernel. PG's choice of auth
method isn't.
regards, tom lane