Postgres Pro
Downloads
Home   >   mailing lists

Thread: Remote access on Windows Server

Remote access on Windows Server

From
"Rainer Leo"
Date:
Hello, we use postgres 13.15 and have to use Windows Datacenter 2022

I cannot figure out how to configure postgres for secure remote access.
It is not possible to use IP whitelisting or VPN, because the user do not provide anything
beside host/name/port/user/password

# this works but it grants access without password
host    all      all      0.0.0.0/0      trust


# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


listen_addresses = '*' in postgresql.conf is set


What is the secure way to ensure remote access on Windows Server?

Thanks for any help!

Regards, Leo



Re: Remote access on Windows Server

From
Muhammad Ikram
Date:
Hi,

0.0.0/0 trust will make access . This will compromise security.
For rest think of firewall rules


Muhammad Ikram,
Butnine global.



On Tue, 2 Jul 2024 at 11:46, Rainer Leo <leo@workfile.de> wrote:
Hello, we use postgres 13.15 and have to use Windows Datacenter 2022

I cannot figure out how to configure postgres for secure remote access.
It is not possible to use IP whitelisting or VPN, because the user do not provide anything
beside host/name/port/user/password

# this works but it grants access without password
host    all      all      0.0.0.0/0      trust


# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


listen_addresses = '*' in postgresql.conf is set


What is the secure way to ensure remote access on Windows Server?

Thanks for any help!

Regards, Leo



Re: Remote access on Windows Server

From
Wasim Devale
Date:

Installation of certificates made from Java will work and make SSL = on

On Tue, 2 Jul, 2024, 1:10 pm Muhammad Ikram, <mmikram@gmail.com> wrote:
Hi,

0.0.0/0 trust will make access . This will compromise security.
For rest think of firewall rules


Muhammad Ikram,
Butnine global.



On Tue, 2 Jul 2024 at 11:46, Rainer Leo <leo@workfile.de> wrote:
Hello, we use postgres 13.15 and have to use Windows Datacenter 2022

I cannot figure out how to configure postgres for secure remote access.
It is not possible to use IP whitelisting or VPN, because the user do not provide anything
beside host/name/port/user/password

# this works but it grants access without password
host    all      all      0.0.0.0/0      trust


# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


listen_addresses = '*' in postgresql.conf is set


What is the secure way to ensure remote access on Windows Server?

Thanks for any help!

Regards, Leo



Re: Remote access on Windows Server

From
Holger Jakobs
Date:
# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


What is written to the log when access is attempted?


Am 2. Juli 2024 09:41:44 MESZ schrieb Wasim Devale <wasimd60@gmail.com>:

Installation of certificates made from Java will work and make SSL = on

On Tue, 2 Jul, 2024, 1:10 pm Muhammad Ikram, <mmikram@gmail.com> wrote:
Hi,

0.0.0/0 trust will make access . This will compromise security.
For rest think of firewall rules


Muhammad Ikram,
Butnine global.



On Tue, 2 Jul 2024 at 11:46, Rainer Leo <leo@workfile.de> wrote:
Hello, we use postgres 13.15 and have to use Windows Datacenter 2022

I cannot figure out how to configure postgres for secure remote access.
It is not possible to use IP whitelisting or VPN, because the user do not provide anything
beside host/name/port/user/password

# this works but it grants access without password
host    all      all      0.0.0.0/0      trust


# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


listen_addresses = '*' in postgresql.conf is set


What is the secure way to ensure remote access on Windows Server?

Thanks for any help!

Regards, Leo



Re: Remote access on Windows Server

From
"Rainer Leo"
Date:
> What is written to the log when access is attempted?
No entries found in the log

# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


What is written to the log when access is attempted?


Am 2. Juli 2024 09:41:44 MESZ schrieb Wasim Devale <wasimd60@gmail.com>:

Installation of certificates made from Java will work and make SSL = on

On Tue, 2 Jul, 2024, 1:10 pm Muhammad Ikram, <mmikram@gmail.com> wrote:
Hi,

0.0.0/0 trust will make access . This will compromise security.
For rest think of firewall rules


Muhammad Ikram,
Butnine global.



On Tue, 2 Jul 2024 at 11:46, Rainer Leo <leo@workfile.de> wrote:
Hello, we use postgres 13.15 and have to use Windows Datacenter 2022

I cannot figure out how to configure postgres for secure remote access.
It is not possible to use IP whitelisting or VPN, because the user do not provide anything
beside host/name/port/user/password

# this works but it grants access without password
host    all      all      0.0.0.0/0      trust


# these two are unable to establish connection
host    all      all      0.0.0.0/0      md5
host    all      all      0.0.0.0/0      scram-sha-256


listen_addresses = '*' in postgresql.conf is set


What is the secure way to ensure remote access on Windows Server?

Thanks for any help!

Regards, Leo