Re: BUG #5559: Full SSL verification fails when hostaddr provided

Поиск
Список
Период
Сортировка
От Stephen Frost
Тема Re: BUG #5559: Full SSL verification fails when hostaddr provided
Дата
Msg-id 20100714215020.GR21875@tamriel.snowman.net
обсуждение исходный текст
Ответ на Re: BUG #5559: Full SSL verification fails when hostaddr provided  (Tom Lane <tgl@sss.pgh.pa.us>)
Ответы Re: BUG #5559: Full SSL verification fails when hostaddr provided
Список pgsql-bugs
* Tom Lane (tgl@sss.pgh.pa.us) wrote:
> Uh, no, because hostaddr is (required to be) a numeric IP.  The odds of
> it being useful in this context seem negligible.

Perhaps I was being a bit overzealous in my last response, sorry about
that.  If the point here is that people who are using hostaddr are in an
environment where DNS is non-functional or actively broken, then yes,
just bombing out would probably be fine.  I think the issue I have here
is that if you've gone to the trouble to set things up on the
server-side to a point where it asks the client to do Kerberos (which, I
think, must be the case if we've gotten to this point in the code), and
for some reason the client has decided to use hostaddr instead of host
(perhaps some client-side code saw a dotted-quad and thought "oh, you
must want to use hostaddr instead of host"), it shouldn't break without
a real reason.

    Thanks,

        Stephen

В списке pgsql-bugs по дате отправления:

Предыдущее
От: Stephen Frost
Дата:
Сообщение: Re: BUG #5559: Full SSL verification fails when hostaddr provided
Следующее
От: Tom Lane
Дата:
Сообщение: Re: BUG #5559: Full SSL verification fails when hostaddr provided