Home > mailing lists

Re: [HACKERS] pgsql/php3/apache authentication - Mailing list pgsql-general

From	Peter Eisentraut
Subject	Re: [HACKERS] pgsql/php3/apache authentication
Date	April 28, 2000 07:05:46
Msg-id	Pine.GSO.4.02A.10004281003220.10804-100000@Uggla.DoCS.UU.SE Whole thread Raw
In response to	Re: [HACKERS] pgsql/php3/apache authentication (wieck@debis.com (Jan Wieck))
List	pgsql-general

Tree view

On Thu, 27 Apr 2000, Jan Wieck wrote:

>     The  default  of  "local  all  trust"  is something I allways
>     considered insecure.

No kidding.

>     If we add  a  permissions  field  to  the  local  entry,  the
>     postmaster can chmod() the socket file after creating it (and
>     maybe drain out waiting connections that slipped  in  between
>     after  a  second  before  accepting  the first real one). The
>     default hba would then read:
>
>         local  all                               trust 0770
>         host   all   127.0.0.1  255.255.255.255  ident sameuser

I think I like that idea.


--
Peter Eisentraut                  Sernanders väg 10:115
peter_e@gmx.net                   75262 Uppsala
http://yi.org/peter-e/            Sweden

pgsql-general by date:

From: Titus Brown
Date: 28 April 2000, 05:51:50
Subject: "Slow" replication/updates/??

From: Peter Eisentraut
Date: 28 April 2000, 07:09:46
Subject: Re: [HACKERS] pgsql/php3/apache authentication

Re: [HACKERS] pgsql/php3/apache authentication - Mailing list pgsql-general

Previous

Next