| From: | Greg Stark <gsstark(at)mit(dot)edu> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Magnus Hagander <magnus(at)hagander(dot)net>, Josh Berkus <josh(at)agliodbs(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Indent authentication overloading |
| Date: | 2010-11-18 19:14:52 |
| Message-ID: | AANLkTinnCBOHMb=fa_3YeQTT3zn1pyU_DAEb2aM-kzAr@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Thu, Nov 18, 2010 at 6:36 PM, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
> It's also warning about the wrong thing. IMO the real subtext to this
> discussion is that we're afraid people are using ident-over-TCP
> insecurely because they've confused it with ident-over-socket.
> Which is a legitimate concern, but issuing warnings about
> ident-over-socket configurations will accomplish nothing whatsoever
> to wake up the guy at risk, because he's not using one. It will only
> make us look like pedantic nannies annoying people whose configurations
> are perfectly fine.
Perhaps we should rename both then? Then we could warn if someone is
using ident to refer to identd authentication but not if they're using
it to refer to peer authentication.
--
greg
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alvaro Herrera | 2010-11-18 19:16:10 | Re: describe objects, as in pg_depend |
| Previous Message | Alvaro Herrera | 2010-11-18 18:59:51 | Re: describe objects, as in pg_depend |