Stephen Frost wrote:
> PAM is simply not always an option, unless you want to figure out a way
> to use PAM modules without using /etc/passwd and company. Currently the
> only way to use PAM w/ password-changing done in PG is to chown all the
> various files and whatnot over to being owned by Postgres, which is a royal
> pain and a very ugly mess. I suppose another option would be to
> convince PG to run as root but that's not exactly an encouraged setup
> either.
>
>
That assumes that you are using system auth. PAM+LDAP for example has no
such problems.
cheers
andrew