Home > mailing lists

Re: Disable TRUST authentication mode - Mailing list pgsql-admin

From	c k
Subject	Re: Disable TRUST authentication mode
Date	March 10, 2012 14:22:12
Msg-id	CAN2Y=uMTg1YaT-=3jQGNafA84spi=fPQ=-3B+GP0raq=oWvZmA@mail.gmail.com Whole thread Raw
In response to	Re: Disable TRUST authentication mode (Jan Lentfer <Jan.Lentfer@web.de>)
Responses	Re: Disable TRUST authentication mode (Frank Lanitz <frank@frank.uvena.de>) Re: Disable TRUST authentication mode (Jan Lentfer <Jan.Lentfer@web.de>)
List	pgsql-admin

Tree view

It we can disable the TRUST mode then every user have to login with password and every fraud user have to know the password (at least) of the user. It is not the case that users from other departments share their passwords, but fraud users just bypasses the need to know the password.

C P Kulkarni

On Sat, Mar 10, 2012 at 8:46 PM, Jan Lentfer <Jan.Lentfer@web.de> wrote:

Am 10.03.2012 16:09, schrieb Jan Lentfer:

Sorry, maybe I do not entirely understand what you mean, but just >don't
use< trust in you pg_hba.conf?

Reading it again, I'd say this is your problem:

"The simplest way is >to get the control of the server< and then change the mode of the authentication to trust and restart the server."

If anyone can do that with your server, how would disabling trust improve anything?

Jan

--
Sent via pgsql-admin mailing list (pgsql-admin@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

pgsql-admin by date:

From: Frank Lanitz
Date: 10 March 2012, 14:19:29
Subject: Re: Disable TRUST authentication mode

From: Frank Lanitz
Date: 10 March 2012, 14:27:17
Subject: Re: Disable TRUST authentication mode

Re: Disable TRUST authentication mode - Mailing list pgsql-admin

Previous

Next