Re: Spoofing as the postmaster

Bruce Momjian wrote: <blockquote cite="mid:200712241743.lBOHhCc21531@momjian.us" type="cite"><pre wrap="">Mark Mielke
wrote:</pre><blockquote type="cite"><br /><pre wrap="">I agree - I forgot there were different flavours. I think any of
these
 
are just as good as SSL with public key authentication, and perhaps a 
lot cheaper in terms of performance. The only piece of information 
missing is the uid to compare against, which may as well be provided in 
the db open parameters the same as any other parameters might be provided.   </pre></blockquote><pre wrap="">
True, but if you are going to have the client check a uid we might as
well just put the socket file in a secure directory and be done with it. </pre></blockquote><br /> That's a good point
too...:-)<br /><br /> Cheers,<br /> mark<br /><br /><pre class="moz-signature" cols="72">-- 
 
Mark Mielke <a class="moz-txt-link-rfc2396E" href="mailto:mark@mielke.cc"><mark@mielke.cc></a>
</pre>