Re: Spoofing as the postmaster

Поиск
Список
Период
Сортировка
От Peter Eisentraut
Тема Re: Spoofing as the postmaster
Дата
Msg-id 200712221644.18160.peter_e@gmx.net
обсуждение исходный текст
Ответ на Spoofing as the postmaster  (Bruce Momjian <bruce@momjian.us>)
Ответы Re: Spoofing as the postmaster  (Andrew Dunstan <andrew@dunslane.net>)
Re: Spoofing as the postmaster  (Tom Lane <tgl@sss.pgh.pa.us>)
Re: Spoofing as the postmaster  ("Marko Kreen" <markokr@gmail.com>)
Список pgsql-hackers
Дерево обсуждения 
Bruce Momjian wrote:
> The fundamental problem is that because we don't require root, any user's
> postmaster or pretend postmaster is as legitimate as anyone else's.  SSL
> certificates add legitimacy checks for TCP, but not for unix domain
> sockets.

Wouldn't SSL work over Unix-domain sockets as well?  The API only deals with 
file descriptors.

-- 
Peter Eisentraut
http://developer.postgresql.org/~petere/

В списке pgsql-hackers по дате отправления:

Предыдущее
От: "D'Arcy J.M. Cain"
Дата:
Сообщение: Re: Spoofing as the postmaster
Следующее
От: Andrew Dunstan
Дата:
Сообщение: Re: Spoofing as the postmaster