Re: postgresql, auth, cron
On Fri, Apr 18, 2003 at 12:20:00PM +0100, Oliver Elphick wrote:
> On Fri, 2003-04-18 at 09:53, Richard Hector wrote:
> > In /etc/cron.d/postgresql:
> > # To ensure proper access rights, 'peer sameuser' access for localhost is
> > # required in /etc/postgresql/pg_hba.conf. This is now the default setting for
> > # the Debian configuration.
> > However the extensive notes in pg_hba.conf don't mention a 'peer' keyword
> > at all, nor can I find it by googling the postgresql site - except in
> > list archives.
> > Is it an obsolete feature?
> Yes. I called it 'peer' when I introduced it into the Debian version.
> When the upstream developers adopted (and reworked) it, they named it
> "ident", since it parallels the "ident" option for host connections.
> The text in pg_hba.conf has been revised in a later version of the
OK. Though the bad text in the (standard) woody version is in
/etc/cron.d/postgresql, not pg_hba.conf.
> > In all, the authentication features of PostgreSQL seem a bit limiting to me.
> > Is that other people's experience, or am I just failing to understand it?
> It is a lot more flexible in 7.3 (unstable or a woody version at
> http://people.debian.org/~elphick/debian) in which you can control
> access by a combination of user, database and connection. Getting
> fine-grained control in 7.2 and earlier is pretty difficult.
Downloading now, thanks.
> > Any suggestions on what to read?
> The Administrator's manual in the postgresql-doc package, the Client
> Authentication chapter.
Thanks a lot Oliver - I'm getting there slowly :-)