> From: Tom Lane <tgl@sss.pgh.pa.us>
>G lyn Astill <glynastill@yahoo.co.uk> writes:
>> I'm having what's hopefully a fairly trivial issue here with
> pg_hba.conf in 9.0.4; when I add in the following line
>
>> host all +ad_users 10.10.0.0/16 ldap <ldap
> details>
>
>> If I try to log in with a superuser account from the 10.10.0.0/16 network
> it appears to try to authenticate it against that entry via ldap.
>
>> This didn't happen in 8.4.8, what could I be missing?
>
> Well, a superuser is automatically considered a member of any group,
> so a match to that line would be expected IMO. If you don't want that,
> you need some more-specific line ahead of it to catch superusers.
>
> regards, tom lane
>
Well that's all new to me, surely this is a bug?
How can I specifically catch superusers?