On 29 Nov, Bill Barnes wrote:
>>
> [ Snip config. hints]
>
> Found in this file 2 lines:
> 'local all
> trust'
> 'host all 127.0.0.1 255.255.255.255.
> trust'
> While this is not the ultimate security :-) doesn't it render the host
> accessible.
No. These two lines allow (respectively) access from the server machine
over UDP and access from the server machine over TCP. Neither line
allows access from outside the server machine. What you want is
something like:
host all 192.168.1.0 255.255.255.0 trust
where the two numbers are IP addresses and masks suitable for your LAN,
or
host all 192.168.1.123 255.255.255.255 trust
where 192.168.1.123 is the IP address of the (single) Windows machine
from which you are connecting. And of course you want to consider the
security implications of trusting the Windows machine to tell you who
is logged on, etc. You may want to look at the other authentication
methods available.
> [ Snip more admin hints ]
HTH,
Ewan.
************
