Re: Adding line to pg_hba.conf for a specific group makes superuser authentication fail in 9.0?
| От | Glyn Astill |
|---|---|
| Тема | Re: Adding line to pg_hba.conf for a specific group makes superuser authentication fail in 9.0? |
| Дата | |
| Msg-id | 1311784785.5983.YahooMailNeo@web26004.mail.ukl.yahoo.com обсуждение исходный текст |
| Ответ на | Re: Adding line to pg_hba.conf for a specific group makes superuser authentication fail in 9.0? (Tom Lane <tgl@sss.pgh.pa.us>) |
| Ответы |
Re: Adding line to pg_hba.conf for a specific group
makes superuser authentication fail in 9.0?
|
| Список | pgsql-admin |
> From: Tom Lane <tgl@sss.pgh.pa.us> >G lyn Astill <glynastill@yahoo.co.uk> writes: >> I'm having what's hopefully a fairly trivial issue here with > pg_hba.conf in 9.0.4; when I add in the following line > >> host all +ad_users 10.10.0.0/16 ldap <ldap > details> > >> If I try to log in with a superuser account from the 10.10.0.0/16 network > it appears to try to authenticate it against that entry via ldap. > >> This didn't happen in 8.4.8, what could I be missing? > > Well, a superuser is automatically considered a member of any group, > so a match to that line would be expected IMO. If you don't want that, > you need some more-specific line ahead of it to catch superusers. > > regards, tom lane > Well that's all new to me, surely this is a bug? How can I specifically catch superusers?
В списке pgsql-admin по дате отправления: