Home > mailing lists

Re: Logging of matching pg_hba.conf entry during auth skips trust auth, potential security issue - Mailing list pgsql-hackers

From	Jacob Champion
Subject	Re: Logging of matching pg_hba.conf entry during auth skips trust auth, potential security issue
Date	August 16, 2023 01:39:10
Msg-id	CAAWbhmiyvLd+srD+tXsE6JEbzYSr72tt21X_01XmGcA9p5mg2A@mail.gmail.com Whole thread Raw
In response to	Re: Logging of matching pg_hba.conf entry during auth skips trust auth, potential security issue (Michael Paquier <michael@paquier.xyz>)
Responses	Re: Logging of matching pg_hba.conf entry during auth skips trust auth, potential security issue
List	pgsql-hackers

Tree view

On Tue, Aug 15, 2023 at 3:24 PM Michael Paquier <michael@paquier.xyz> wrote:
> The first message from Jacob outlines the idea behind the handling of
> trust.  We could perhaps add one extra set_authn_id() for the uaTrust
> case (not uaCert!) if that's more helpful.

I'm not super comfortable with saying "connection authenticated" when
it explicitly hasn't been (nor with switching the meaning of a
non-NULL SYSTEM_USER from "definitely authenticated somehow" to "who
knows; parse it apart to see"). But adding a log entry ("connection
trusted:" or some such?) with the pointer to the HBA line that made it
happen seems like a useful audit helper to me.

--Jacob

pgsql-hackers by date:

From: Michael Paquier
Date: 16 August 2023, 01:36:07
Subject: Re: Would it be possible to backpatch Close support in libpq (28b5726) to PG16?

From: Alvaro Herrera
Date: 16 August 2023, 01:39:20
Subject: Re: Would it be possible to backpatch Close support in libpq (28b5726) to PG16?

Re: Logging of matching pg_hba.conf entry during auth skips trust auth, potential security issue - Mailing list pgsql-hackers

Previous

Next