Обсуждение: Authentication Question

Hello,

is postgres already pam-aware? I would really like to be able to use external
authentication-methods (the password not the itself) to avoid setting up pass-
words.

Konstantin
--
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet: elwood@agouros.de
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185
----------------------------------------------------------------------------
"Captain, this ship will not sustain the forming of the cosmos." B'Elana Torres

On Jue 19 Abr 2001 23:12, Konstantinos Agouros wrote:
> Hello,
>
> is postgres already pam-aware? I would really like to be able to use
> external authentication-methods (the password not the itself) to avoid
> setting up pass- words.

I'm not sure about this, but you can use the ident option against the server
where the users have there acount.

Saludos... :-)

--
El mejor sistema operativo es aquel que te da de comer.
Cuida tu dieta.
-----------------------------------------------------------------
Martin Marques                  |        mmarques@unl.edu.ar
Programador, Administrador      |       Centro de Telematica
                       Universidad Nacional
                            del Litoral
-----------------------------------------------------------------

Konstantinos Agouros writes:

> is postgres already pam-aware?

No.

> I would really like to be able to use external authentication-methods
> (the password not the itself) to avoid setting up pass- words.

What particular method that does not use passwords are you interested in?

--
Peter Eisentraut   peter_e@gmx.net   http://funkturm.homeip.net/~peter

On Thu, Apr 19, 2001 at 11:28:27PM +0200, Peter Eisentraut wrote:
> Konstantinos Agouros writes:
>
> > is postgres already pam-aware?
>
> No.
Will it be?
>
> > I would really like to be able to use external authentication-methods
> > (the password not the itself) to avoid setting up pass- words.
>
> What particular method that does not use passwords are you interested in?
It's not so much the 'not using passwords' it's more the use something that
is not unix-password to get to a single password space. For example on the
machines my users can log in to (all users in the company can telnet/ssh to
the same machines) i use pam_smb so that the password comes from the NT-PDC
and I don't have the trouble of giving passwords to the users. We will actually
move to libnss_smb so all we need to do is an mkdir and a chown \:) but only
after some testing.
In the case of the database I will need to create the users, since not everyone
has access (and grants etc need to be maintained also) but if a users changes
his/her password on NT, I now would have the double book keeping again I tried
to avoid.

Konstantin
>
> --
> Peter Eisentraut   peter_e@gmx.net   http://funkturm.homeip.net/~peter
>

--
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet: elwood@agouros.de
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185
----------------------------------------------------------------------------
"Captain, this ship will not sustain the forming of the cosmos." B'Elana Torres