[Dbconfig-common-devel] Re: Best practice for allowing access to a
postgres db
Martin Pitt
mpitt at debian.org
Sat Oct 1 13:52:16 UTC 2005
Hi!
sean finney [2005-09-27 4:22 -0400]:
> what i meant was that when one calls pg_test_hba, one should be able to
> pass the exact connection method/params. here are some examples:
Right, makes sense.
> pg_test_hba --add --method ident dbname dbuser
> pg_test_hba --add --ip w.x.y.z --method ident dbname dbuser
> pg_test_hba --add --method md5 dbname dbuser
> pg_test_hba --add --ip w.x.y.z --method md5 dbname dbuser
> pg_test_hba --remove ...
What is the purpose of --add/--remove?
> and i suppose --ip would default to 127.0.0.1 if it needed to be used
> in making calculations.
My initial spec proposed that if --ip is not given, it defaults to
lcoal Unix socket authentication. This should be consistent with
pg_add_hba. What do you think?
Martin
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntulinux.org
Debian Developer http://www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/dbconfig-common-devel/attachments/20051001/4d7ed9df/attachment.pgp
More information about the Dbconfig-common-devel
mailing list