On 28.04.21 16:09, Alvaro Herrera wrote:
> Looking at it now, I wonder how well do the "hostno" options work. If I
> say "hostnogssenc", is an SSL-encrypted socket good? If I say
> "hostnossl", is a GSS-encrypted socket good? If so, how does that make
> sense?
I think for example if you want to enforce SSL connections, then writing
"hostnossl ... reject" would be sensible. That would also reject
GSS-encrypted connections, but that would be what you want in that scenario.