Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: Spoofing as the postmaster
- From: Peter Eisentraut <peter_e(at)gmx(dot)net>
- To: pgsql-hackers(at)postgresql(dot)org
- Cc: Bruce Momjian <bruce(at)momjian(dot)us>, Tomasz Ostrowski <tometzky(at)batory(dot)org(dot)pl>
- Subject: Re: Spoofing as the postmaster
- Date: Sat, 22 Dec 2007 16:44:16 +0100
Bruce Momjian wrote: > The fundamental problem is that because we don't require root, any user's > postmaster or pretend postmaster is as legitimate as anyone else's. SSL > certificates add legitimacy checks for TCP, but not for unix domain > sockets. Wouldn't SSL work over Unix-domain sockets as well? The API only deals with file descriptors. -- Peter Eisentraut http://developer.postgresql.org/~petere/
- Follow-Ups:
- Re: Spoofing as the postmaster
- From: Marko Kreen
- Re: Spoofing as the postmaster
- From: Tom Lane
- Re: Spoofing as the postmaster
- From: Andrew Dunstan
- Re: Spoofing as the postmaster
- References:
- Spoofing as the postmaster
- From: Bruce Momjian
- Spoofing as the postmaster
- Prev by Date: Re: Spoofing as the postmaster
- Next by Date: Re: Spoofing as the postmaster
- Previous by thread: Re: Spoofing as the postmaster
- Next by thread: Re: Spoofing as the postmaster
- Indexes: