Re: Lock Postgres account after X number of failed logins?
| От | Stephen Frost |
|---|---|
| Тема | Re: Lock Postgres account after X number of failed logins? |
| Дата | |
| Msg-id | 20200506132828.GP13712@tamriel.snowman.net обсуждение исходный текст |
| Ответ на | Re: Lock Postgres account after X number of failed logins? (Geoff Winkless <pgsqladmin@geoff.dj>) |
| Ответы |
RE: EXTERNAL: Re: Lock Postgres account after X number of failedlogins?
Re: Lock Postgres account after X number of failed logins? Re: Lock Postgres account after X number of failed logins? |
| Список | pgsql-general |
Greetings, * Geoff Winkless (pgsqladmin@geoff.dj) wrote: > On Wed, 6 May 2020 at 00:05, Tim Cross <theophilusx@gmail.com> wrote: > > Where Tom's solution fails is with smaller companies that cannot afford > > this level of infrastructure. > > Is there an objection to openldap? It's lightweight (so could > reasonably be run on the same hardware without significant impact), > BSD-ish and mature, and (with the password policy overlay) should > provide exactly the functionality the OP requested. LDAP-based authentication in PG involves passing the user's password to the database server in the clear (or tunneled through SSL, but that doesn't help if the DB is compromised), so it's really not a good solution. Thanks, Stephen
Вложения
В списке pgsql-general по дате отправления: