Re: sql-ledger and postgresql: HOWTO?
On Tue, 2004-08-03 at 00:01, John Summerfield wrote:
> ident is not secure. Just let me near your network with my Laptop:-) I
> can make _m,y_ ident say I'm whoever I want you to think I am.
The postgresql package (by default) does not enable ident authentication
except for localhost (and for Unix sockets, which don't use the ident
server). This is stipulated to be secure because identd is under the
control of the same administrator who is installing postgresql. Ident
authentication is not recommended for use from remote machines except
those whose administration is similarly verifiable.
>
> Trust is probably okay if you control all the network. I'd change to
> password authrntication.
I would always recommend password authentication for web-based
applications.
> >FATAL: IDENT authentification failed for user "sql-ledger".
> >
> >Why is postgresql trying to do an IDENT-authentication?
> >
> >
> Comment out the line(s) that say it can.
Better to find out why it is matching one of those lines. From the
details given, it must either be because the connection is using a Unix
socket or because it is connecting to a different database.
--
Oliver Elphick olly@lfix.co.uk
Isle of Wight http://www.lfix.co.uk/oliver
GPG: 1024D/A54310EA 92C8 39E7 280E 3631 3F0E 1EC0 5664 7A2F A543 10EA
========================================
"All scripture is given by inspiration of God, and is
profitable for doctrine, for reproof, for correction,
for instruction in righteousness;"
II Timothy 3:16
Reply to: