On Wed, Oct 10, 2012 at 6:11 PM, Greg Sabino Mullane <greg@turnstep.com> wrote:
> Jim Nasby pointed out:
>
>> It'd be useful to us to have a utility that could cleanly validate
>> the server was up and communicating, without having to actually login.
>
> Well sure, but wouldn't it be even more useful to validate at the
> same time that logins are working? :)
Not necessarily. To test if logins are working your tool needs access
to the credentials of a user you want to test. That makes the tool
less useful to someone who wants to run it on a machine or from a
process that shouldn't have access to those credentials.
Of course it's not a problem to have it as an option. But I'm just
agreeing with Jim that it can be useful to have a tool that is capable
of doing less.
Fwiw the current architecture of the postmaster is designed to *not*
start up a backend until after the the initial exchange is done. That
protects against denial of service attacks that open lots of TCP
connections without having any credentials. But it means that just
making a TCP connection is verifying less of the system.
--
greg
