Hi all,

I'm having some trouble configuring ident authentication for TCP
connections. I can get it to work fine for local connections, but I
can't

Local connection:

$ psql postgres
....
postgres=>

Server Log:
Dec 9 11:06:59 mitchell postgres[27482]: [4-1] LOG: connection
received: host=[local]
Dec 9 11:06:59 mitchell postgres[27482]: [5-1] LOG: connection
authorized: user=koczan database=postgres
Dec 9 11:07:03 mitchell postgres[27482]: [6-1] LOG: disconnection:
session time: 0:00:04.370 user=koczan database=postgres host=[local]

Remote connection to localhost:
$ psql -h localhost postgres
psql: FATAL: no pg_hba.conf entry for host "127.0.0.1", user
"koczan", database "postgres", SSL off

Server log:
Dec 9 11:07:06 mitchell postgres[27494]: [4-1] LOG: connection
received: host=localhost port=41434
Dec 9 11:07:06 mitchell postgres[27494]: [5-1] LOG: could not
connect to Ident server at address "127.0.0.1", port 113: Connection
refused
Dec 9 11:07:06 mitchell postgres[27494]: [6-1] FATAL: Ident
authentication failed for user "koczan"
Dec 9 11:07:06 mitchell postgres[27495]: [4-1] LOG: connection
received: host=localhost port=41435
Dec 9 11:07:06 mitchell postgres[27495]: [5-1] FATAL: no pg_hba.conf
entry for host "127.0.0.1", user "koczan", database "postgres", SSL
off

My pg_hba.conf file looks like this:
# TYPE DATABASE USER CIDR-ADDRESS METHOD

local all koczan ident sameuser
hostssl all koczan 127.0.0.1/32 ident sameuser

I'm running Red Hat Enterprise 5.4, and I can't find any place where
an ident server is actually running on this host.

How is it working for local connections, and what might I be able to
do to get it to work for localhost TCP connections.

Thanks,
Peter

--
Sent via pgsql-admin mailing list (pgsql-admin [at] postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

This is a cryptographically signed message in MIME format.

--=_6162kn7kgds8
Content-Type: text/plain;
charset=ISO-8859-1;
DelSp="Yes";
format="flowed"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

Zitat von Peter Koczan <pjkoczan [at] gmail.com>:

> Hi all,
>
> I'm having some trouble configuring ident authentication for TCP
> connections. I can get it to work fine for local connections, but I
> can't
>
> Local connection:
>
> $ psql postgres
> ...
> postgres=>
>
> Server Log:
> Dec 9 11:06:59 mitchell postgres[27482]: [4-1] LOG: connection
> received: host=[local]
> Dec 9 11:06:59 mitchell postgres[27482]: [5-1] LOG: connection
> authorized: user=koczan database=postgres
> Dec 9 11:07:03 mitchell postgres[27482]: [6-1] LOG: disconnection:
> session time: 0:00:04.370 user=koczan database=postgres host=[local]
>
> Remote connection to localhost:
> $ psql -h localhost postgres
> psql: FATAL: no pg_hba.conf entry for host "127.0.0.1", user
> "koczan", database "postgres", SSL off
>
> Server log:
> Dec 9 11:07:06 mitchell postgres[27494]: [4-1] LOG: connection
> received: host=localhost port=41434
> Dec 9 11:07:06 mitchell postgres[27494]: [5-1] LOG: could not
> connect to Ident server at address "127.0.0.1", port 113: Connection
> refused

This looks like you have no ident server running...

> Dec 9 11:07:06 mitchell postgres[27494]: [6-1] FATAL: Ident
> authentication failed for user "koczan"
> Dec 9 11:07:06 mitchell postgres[27495]: [4-1] LOG: connection
> received: host=localhost port=41435
> Dec 9 11:07:06 mitchell postgres[27495]: [5-1] FATAL: no pg_hba.conf
> entry for host "127.0.0.1", user "koczan", database "postgres", SSL
> off
>
> My pg_hba.conf file looks like this:
> # TYPE DATABASE USER CIDR-ADDRESS METHOD
>
> local all koczan ident sameuser
> hostssl all koczan 127.0.0.1/32 ident sameuser
>
> I'm running Red Hat Enterprise 5.4, and I can't find any place where
> an ident server is actually running on this host.

I guess you must install it first in recent distros, as there is not
much use of ident anymore. So you have to search the packages for your
OS.

Regards

Andreas


--=_6162kn7kgds8
Content-Type: application/pkcs7-signature;
name="smime.p7s"
Content-Description: S/MIME krytographische Unterschrift
Content-Disposition: attachment;
filename="smime.p7s"
Content-Transfer-Encoding: base64

MIIY+QYJKoZIhvcNAQcCoIIY6jCCGOYCAQExCzAJBgUrDgMCGgUAMAsGCSqG SIb3DQEHAaCCFlEw
ggaaMIIFgqADAgECAgMAwvUwDQYJKoZIhvcNAQEFBQAwgYwxCzAJBgNVBAYT AklMMRYwFAYDVQQK
Ew1TdGFydENvbSBMdGQuMSswKQYDVQQLEyJTZWN1cmUgRGlnaXRhbCBDZXJ0 aWZpY2F0ZSBTaWdu
aW5nMTgwNgYDVQQDEy9TdGFydENvbSBDbGFzcyAxIFByaW1hcnkgSW50ZXJt ZWRpYXRlIENsaWVu
dCBDQTAeFw0wOTExMjMxNzQ3MzVaFw0xMDExMjUwNTQzMDJaMIGRMSAwHgYD VQQNExcxMDU0NjAt
MVJlRFpJeWlBS1U0ZlFFSjEeMBwGA1UEChMVUGVyc29uYSBOb3QgVmFsaWRh dGVkMSkwJwYDVQQD
EyBTdGFydENvbSBGcmVlIENlcnRpZmljYXRlIE1lbWJlcjEiMCAGCSqGSIb3 DQEJARYTbHN0X2hv
ZTAyQGt3c29mdC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALaxYcNC4Beo+EGx
PaMY9cIqSeptRDFqn/EkTfTtZOV7cEWvK9wjfoOO+9qgFDyWUya1z19Gbtns Rr95zGk/wGjRBhQQ
7Bnj47z25E4kfHJKdaAXb5K/0WbuiO286Q/7ic64G8Cs0v11Ho63Em7hVRJB sRrNYXr+TpqEe3wZ
+5mNoix1vn4EkW0Sc5COttTs2s670GQhyQ6nPfjcCh4Q1h6Sby5KNfxafvH2 7BeK3xBch6FCNK5q
w+5HBugDY/gcfx+LyFQnIOO0uYp4Bj9UzNc5VvfTKyG/zGZhmjssHuyZFL7D gtiWUuUkYUUFdVo3
cQgAMKU1TLtR5+5xmJqiMW8CAwEAAaOCAvwwggL4MAkGA1UdEwQCMAAwCwYD VR0PBAQDAgSwMB0G
A1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDBDAdBgNVHQ4EFgQU8VCRUMKC VCD5UNj2f9FjAq3y
aCkwHwYDVR0jBBgwFoAUU3Ltkpzg2ssBXHx+ljVO8tS4UYIwHgYDVR0RBBcw FYETbHN0X2hvZTAy
QGt3c29mdC5kZTCCAUIGA1UdIASCATkwggE1MIIBMQYLKwYBBAGBtTcBAgEw ggEgMC4GCCsGAQUF
BwIBFiJodHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS9wb2xpY3kucGRmMDQGCCsG AQUFBwIBFihodHRw
Oi8vd3d3LnN0YXJ0c3NsLmNvbS9pbnRlcm1lZGlhdGUucGRmMIG3BggrBgEF BQcCAjCBqjAUFg1T
dGFydENvbSBMdGQuMAMCAQEagZFMaW1pdGVkIExpYWJpbGl0eSwgc2VlIHNl Y3Rpb24gKkxlZ2Fs
IExpbWl0YXRpb25zKiBvZiB0aGUgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkgUG9s
aWN5IGF2YWlsYWJsZSBhdCBodHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS9wb2xp Y3kucGRmMGMGA1Ud
HwRcMFowK6ApoCeGJWh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL2NydHUxLWNy bC5jcmwwK6ApoCeG
JWh0dHA6Ly9jcmwuc3RhcnRzc2wuY29tL2NydHUxLWNybC5jcmwwgY4GCCsG AQUFBwEBBIGBMH8w
OQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0YXJ0c3NsLmNvbS9zdWIvY2xh c3MxL2NsaWVudC9j
YTBCBggrBgEFBQcwAoY2aHR0cDovL3d3dy5zdGFydHNzbC5jb20vY2VydHMv c3ViLmNsYXNzMS5j
bGllbnQuY2EuY3J0MCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wu Y29tLzANBgkqhkiG
9w0BAQUFAAOCAQEAKS5RDxm+EYFLLy+Qk4+eYdOMBio2IMkS97keGhPMGSGc IVFi8Qxo2ypMRykh
soxNRGDhNQ+rzNNfj3Pt60KUjvvvTnFN9SihiwI1p1rtpykrgq/I88zEqUnZ p5W9cZh1gtqbYbYM
88n8LtchDmbotesVISZ4eHUmFFteWrVS09B05hW4cfe3KhU5POMtzpj/81ZH Tseji/XjJhm7ZROl
13mwQvKdtQfs3+9AHK4JV2lQrR3T6JmITSYvVwSC+7f2ZvsyTBFc4J+oaJlM fQviOJR0X9gulopl
N2gUuUjRkeSm9Bwli6XsOWyMmN78jyWXgvzI3J16nXS/zlrA19GfKjCCB+Iw ggXKoAMCAQICAQ0w
DQYJKoZIhvcNAQEFBQAwfTELMAkGA1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0 Q29tIEx0ZC4xKzAp
BgNVBAsTIlNlY3VyZSBEaWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxKTAn BgNVBAMTIFN0YXJ0
Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTA3MTAyNDIxMDE1NFoX DTEyMTAyMjIxMDE1
NFowgYwxCzAJBgNVBAYTAklMMRYwFAYDVQQKEw1TdGFydENvbSBMdGQuMSsw KQYDVQQLEyJTZWN1
cmUgRGlnaXRhbCBDZXJ0aWZpY2F0ZSBTaWduaW5nMTgwNgYDVQQDEy9TdGFy dENvbSBDbGFzcyAx
IFByaW1hcnkgSW50ZXJtZWRpYXRlIENsaWVudCBDQTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCC
AQoCggEBAMcJg8zOLdgasSmkLhOrlr6KMoOMpohBllVHrdRvEg/q6r8jR+EK 75xCGhR8ToREoqe7
zM9/UnC6TS2y9UKTpT1v7RSMzR0t6ndl0TWBuUr/UXBhPk+Kmy7bI4yW4urC +y7P3/1/X7U8ocb8
VpH/Clt+4iq7nirMcNh6qJR+xjOhV+VHzQMALuGYn5KZmc1NbJQYclsGkDxD z2UbFqE2+6vIZoL+
jb9x4Pa5gNf1TwSDkOkikZB1xtB4ZqtXThaABSONdfmv/Z1pua3FYxnCFmdr /+N2JLKutIxMYqQO
Jebr/f/h5t95m4JgrM3Y/w7YX9d7YAL9jvN4SydHsU6n65cCAwEAAaOCA1sw ggNXMAwGA1UdEwQF
MAMBAf8wCwYDVR0PBAQDAgGmMB0GA1UdDgQWBBRTcu2SnODaywFcfH6WNU7y 1LhRgjCBqAYDVR0j
BIGgMIGdgBROC+8apEBbpRdphzDKNGhD0EGu8qGBgaR/MH0xCzAJBgNVBAYT AklMMRYwFAYDVQQK
Ew1TdGFydENvbSBMdGQuMSswKQYDVQQLEyJTZWN1cmUgRGlnaXRhbCBDZXJ0 aWZpY2F0ZSBTaWdu
aW5nMSkwJwYDVQQDEyBTdGFydENvbSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0 eYIBATAJBgNVHRIE
AjAAMD0GCCsGAQUFBwEBBDEwLzAtBggrBgEFBQcwAoYhaHR0cDovL3d3dy5z dGFydHNzbC5jb20v
c2ZzY2EuY3J0MGAGA1UdHwRZMFcwLKAqoCiGJmh0dHA6Ly9jZXJ0LnN0YXJ0 Y29tLm9yZy9zZnNj
YS1jcmwuY3JsMCegJaAjhiFodHRwOi8vY3JsLnN0YXJ0c3NsLmNvbS9zZnNj YS5jcmwwggFdBgNV
HSAEggFUMIIBUDCCAUwGCysGAQQBgbU3AQEEMIIBOzAvBggrBgEFBQcCARYj aHR0cDovL2NlcnQu
c3RhcnRjb20ub3JnL3BvbGljeS5wZGYwNQYIKwYBBQUHAgEWKWh0dHA6Ly9j ZXJ0LnN0YXJ0Y29t
Lm9yZy9pbnRlcm1lZGlhdGUucGRmMIHQBggrBgEFBQcCAjCBwzAnFiBTdGFy dCBDb21tZXJjaWFs
IChTdGFydENvbSkgTHRkLjADAgEBGoGXTGltaXRlZCBMaWFiaWxpdHksIHJl YWQgdGhlIHNlY3Rp
b24gKkxlZ2FsIExpbWl0YXRpb25zKiBvZiB0aGUgU3RhcnRDb20gQ2VydGlm aWNhdGlvbiBBdXRo
b3JpdHkgUG9saWN5IGF2YWlsYWJsZSBhdCBodHRwOi8vY2VydC5zdGFydGNv bS5vcmcvcG9saWN5
LnBkZjARBglghkgBhvhCAQEEBAMCAAcwUAYJYIZIAYb4QgENBEMWQVN0YXJ0 Q29tIENsYXNzIDEg
UHJpbWFyeSBJbnRlcm1lZGlhdGUgRnJlZSBTU0wgRW1haWwgQ2VydGlmaWNh dGVzMA0GCSqGSIb3
DQEBBQUAA4ICAQCqmuHgW4zOHRv8HcYsMCCgt5Mm/fECts0RKL8p/8cwz/+B /wXPBRQ04KCUfp19
i4tBD91O07IxvgmiIvdPvGJUoQA6ZD635v/Es4xrSbXzOhGpbiToaXKjK9zs syt2mBiT+USHmery
0930Gg2bCKKF5emEhUf9B6VOBSQ3NMLshWmZhWwq406fETWMkVk01+plkr/k 62jsLo98663XUqYF
BItlqsDPRv+aOCF0Gxh8e6F07y+s68PSDmDt0DimQ4BTYR3ilIKjAFIi3IP/ loXBnvmOLpirsYIb
cGmLIA/2y3yH6KdzQv7uSasAwloswCa7oZmzleCxvOfTBQm9sP2HmOecwz1R pkNzGXa4sHTiq4ZR
Yzo2IoZptvFBzrzQ9ht5CtC757oni6o0DHOhrlHGQEDlr/eqVuAX24kF6QKo mzDHm9D2SEmuzxRM
xogXNsQLlUZDOJAff/oongNQ/zk4kScLH+q5KFYDrDfXwsOdtrczprlX4qg0 uGxWL9NLF/3RRsGr
B1FH9w7C4aQ0mHXo2++Eio7bqiwyDrgJtmwNWsQOvu5IxXjSJ4ElOjj0jK3v sQI6HP+nKGjBrYRQ
/popq/4v/BfMA8Hcs2rO6MZHQrWlvIVYq/JiZ26eAm3JJZQzD5HkOqkDZsUg 4Tnql9Y8sdnE4v7z
6vv08sVf7LZXoTCCB8kwggWxoAMCAQICAQEwDQYJKoZIhvcNAQEFBQAwfTEL MAkGA1UEBhMCSUwx
FjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBEaWdp dGFsIENlcnRpZmlj
YXRlIFNpZ25pbmcxKTAnBgNVBAMTIFN0YXJ0Q29tIENlcnRpZmljYXRpb24g QXV0aG9yaXR5MB4X
DTA2MDkxNzE5NDYzNloXDTM2MDkxNzE5NDYzNlowfTELMAkGA1UEBhMCSUwx FjAUBgNVBAoTDVN0
YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBEaWdpdGFsIENlcnRpZmlj YXRlIFNpZ25pbmcx
KTAnBgNVBAMTIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIIC IjANBgkqhkiG9w0B
AQEFAAOCAg8AMIICCgKCAgEAwYjbCbxsRnx4n5V7tTOQ8nJi1sE2ICIkXs7p d/JDCqIGZKTMjjb4
OOYj8G5tsTzdcqOFHKHTPbQzK9Mvr/7qsEFZZ7bEBn0KnnSF1nlMgDd63zkF Uln39BtGQ6TShYXS
w3HzdWI0uiyKfx6P7u000BHHls1SPboz1t1N3gs7SkufwiYv+rUWHHI1d8o8 XebK4SaLGjZ2XAHb
dBQl/u21oIgP3XjKLR8HlzABLXJ5+kbWEyqouaarg0kd5fLv3eQBjhgKj2NT FoViqQ4ZOsy1ZqbC
a3QH5Cvhdj60bdj2ROFzYh87xL6gU1YlbFEJ96qryr92/W2b853bvz1mvAxW qq+YSJU6S9+nWFDZ
OHWpW+pDDAL/mevobE1wWyllnN2qXcyvATHsDOvSjejqnHvmbvcnZgwaSNdu QuM/3iE+e+ENcPtj
qqhsGlS0XCV6yaLJixamuyx+F14FTVhuEh0B7hIQDcYyfxj//PT6zW6R6DZJ vhpIaYvClk0aErJp
F8EKkNb6eSJIv7p7afhwx/p6N9jYDdJ2T1f/kLfjkdLd78Jgt2c63f6qnPDU i39yIs7Gn5e2+K+K
oBCo2fsYxra1XFI8ibYZKnMBCg8DsxJg8novgdujbv8mMJf1i92JV7atPbOv K8W3dgLwpdYrmoYU
KnL24zOMXQlLE9+7jHQTUksCAwEAAaOCAlIwggJOMAwGA1UdEwQFMAMBAf8w CwYDVR0PBAQDAgGu
MB0GA1UdDgQWBBROC+8apEBbpRdphzDKNGhD0EGu8jBkBgNVHR8EXTBbMCyg KqAohiZodHRwOi8v
Y2VydC5zdGFydGNvbS5vcmcvc2ZzY2EtY3JsLmNybDAroCmgJ4YlaHR0cDov L2NybC5zdGFydGNv
bS5vcmcvc2ZzY2EtY3JsLmNybDCCAV0GA1UdIASCAVQwggFQMIIBTAYLKwYB BAGBtTcBAQEwggE7
MC8GCCsGAQUFBwIBFiNodHRwOi8vY2VydC5zdGFydGNvbS5vcmcvcG9saWN5 LnBkZjA1BggrBgEF
BQcCARYpaHR0cDovL2NlcnQuc3RhcnRjb20ub3JnL2ludGVybWVkaWF0ZS5w ZGYwgdAGCCsGAQUF
BwICMIHDMCcWIFN0YXJ0IENvbW1lcmNpYWwgKFN0YXJ0Q29tKSBMdGQuMAMC AQEagZdMaW1pdGVk
IExpYWJpbGl0eSwgcmVhZCB0aGUgc2VjdGlvbiAqTGVnYWwgTGltaXRhdGlv bnMqIG9mIHRoZSBT
dGFydENvbSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSBQb2xpY3kgYXZhaWxh YmxlIGF0IGh0dHA6
Ly9jZXJ0LnN0YXJ0Y29tLm9yZy9wb2xpY3kucGRmMBEGCWCGSAGG+EIBAQQE AwIABzA4BglghkgB
hvhCAQ0EKxYpU3RhcnRDb20gRnJlZSBTU0wgQ2VydGlmaWNhdGlvbiBBdXRo b3JpdHkwDQYJKoZI
hvcNAQEFBQADggIBABZsmfRmDDT10IVefQrs2hBOOBxe36YlBUuRMsHoO/E9 3UQJWwdJiinLZgK3
sZr3JZgJPI4b4d02hytLu2jTOWY9oCbH8jmRHVGrgnt+1c5a5OIDV3Bplwj5 XlimCt+MBppFFhY4
Cl5X9mLHegIF5rwetfKe9Kkpg/iyFONuKIdEw5Aa3jipPKxDTWRFzt0oqVzy c3sE+Bfoq7HzLlxk
bnMxOhK4vLMR5H2PgVGaO42J9E2TZns8A+3Tmh2a82VQ9aDQdZ8vr/DqgkOY +GmciXnEQ45GcuNk
NhKv9yUeOImQd37Da2q5w8tES6x4kIvnxyweSxFEyDRSJ80KXZ+FwYnVGnjy lRBTMt2AhGZ12bVo
KPthLr6EqDjAmRKGpR5nZK0GLi+pcIXHlg98iWX1jkNUDqvdpYA5lGDANMmW cCyjEvUfSHu9HH5r
t52Q9CI7rvj8Ksr6glKg769LVZPrwbXwIousNE4mIgShhyx1SrflfRPXuAxk wDbSyS+GEowjCcEb
gjtzSaNqV4eU5dZ4xZlDY+NN4Hct4WWZcmkEGkcJ5g8BViT7H78OealYLrnE CQF+lbptAAY+supK
EDnY0Cv1v+x1v5cCxQkbCNxVN+KB+zeEQ2IgyudWS2Xq/mzBJJMkoTTrBf+a Iq6bfT/xZVEKpjBq
s/SIHIAN/HKK6INeMYICcDCCAmwCAQEwgZQwgYwxCzAJBgNVBAYTAklMMRYw FAYDVQQKEw1TdGFy
dENvbSBMdGQuMSswKQYDVQQLEyJTZWN1cmUgRGlnaXRhbCBDZXJ0aWZpY2F0 ZSBTaWduaW5nMTgw
NgYDVQQDEy9TdGFydENvbSBDbGFzcyAxIFByaW1hcnkgSW50ZXJtZWRpYXRl IENsaWVudCBDQQID
AML1MAkGBSsOAwIaBQCggbEwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAc BgkqhkiG9w0BCQUx
DxcNMDkxMjA5MTkyNTIzWjAjBgkqhkiG9w0BCQQxFgQU2ajRI0TiIHkWXVwQ sC4R4YATxT8wUgYJ
KoZIhvcNAQkPMUUwQzAKBggqhkiG9w0DBzAOBggqhkiG9w0DAgICAIAwDQYI KoZIhvcNAwICAUAw
BwYFKw4DAgcwDQYIKoZIhvcNAwICASgwDQYJKoZIhvcNAQEBBQAEggEAVFpr d3U13rMzUqHyaPAp
admIMegN8SVutMRAT4p5NiQ0I4m6qml1EatxYPlg1NZTAVn10DZAngQOiH3n bXQmqGj9LL7irWe0
uSUtsXXiB1RtGuhM7qNHXwGJ11/a5rfUM0/AF6WJwn44K+R1RG7EkPucgSjF 5jqKuTqfug3drtzp
q6FmYBMU4eDUDo9jEdhQ0v8FM6c9/6Ecb27rdOmCCy5O0rC83qm9KWW9F3+0 gcnYb39GEXGQS906
koB4fXNadZJv6nHzLrRevsgBogXPYyNXadfNBlOxj1oQLeS9JbbbPGLEdGPz cjN4P6y1AdHe/vCe
GXE8vRAnnIOkskwurg==

--=_6162kn7kgds8--

On Wed, Dec 9, 2009 at 1:25 PM, <lst_hoe02 [at] kwsoft.de> wrote:
> This looks like you have no ident server running...
>
> I guess you must install it first in recent distros, as there is not much
> use of ident anymore. So you have to search the packages for your OS.

I found the packages. I'm still confused why local ident
authentication works even without a running ident server, though. Does
anyone know why that is?

Thanks,
Peter

--
Sent via pgsql-admin mailing list (pgsql-admin [at] postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

On Wed, 2009-12-09 at 15:18 -0600, Peter Koczan wrote:
> On Wed, Dec 9, 2009 at 1:25 PM, <lst_hoe02 [at] kwsoft.de> wrote:
> > This looks like you have no ident server running...
> >
> > I guess you must install it first in recent distros, as there is not much
> > use of ident anymore. So you have to search the packages for your OS.
>
> I found the packages. I'm still confused why local ident
> authentication works even without a running ident server, though. Does
> anyone know why that is?

Does "local" really use ident? I always assumed local-ident was just
aliased to an NSS call.

Seriously, ident is dead, obsolete, and insecure tech. You are best
just not using it.


--
Sent via pgsql-admin mailing list (pgsql-admin [at] postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

Peter Koczan =D0=BD=D0=B0=D0=BF=D0=B8=D1=81=D0=B0:
> On Wed, Dec 9, 2009 at 1:25 PM, <lst_hoe02 [at] kwsoft.de> wrote:
>> This looks like you have no ident server running...
>>
>> I guess you must install it first in recent distros, as there is not m=
uch
>> use of ident anymore. So you have to search the packages for your OS.
>
> I found the packages. I'm still confused why local ident
> authentication works even without a running ident server, though. Does
> anyone know why that is?

If by "local ident" you mean "when connecting thru unix-domain
sockets" then read here:

http://www.postgresql.org/docs/current/static/auth-methods.h tml#AEN28519


--
Milen A. Radev

--
Sent via pgsql-admin mailing list (pgsql-admin [at] postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

On Wed, Dec 9, 2009 at 3:29 PM, Adam Tauno Williams
<awilliam [at] opengroupware.us> wrote:
> On Wed, 2009-12-09 at 15:18 -0600, Peter Koczan wrote:
>> I found the packages. I'm still confused why local ident
>> authentication works even without a running ident server, though. Does
>> anyone know why that is?
>
> Does "local" really use ident? =A0I always assumed local-ident was just
> aliased to an NSS call.
>
> Seriously, ident is dead, obsolete, and insecure tech. =A0You are best
> just not using it.

I was just considering it as one possibility for a limited purpose,
and after reading up I'm going to try something else.

> If by "local ident" you mean "when connecting thru unix-domain sockets" t=
hen
> read here:
>
> http://www.postgresql.org/docs/current/static/auth-methods.h tml#AEN28519

Yep, that's what I meant. Thanks for the info.

Thanks again,
Peter

--
Sent via pgsql-admin mailing list (pgsql-admin [at] postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin