public inbox for [email protected]
help / color / mirror / Atom feedUnexpected authentication behaviour
3+ messages / 3 participants
[nested] [flat]
* Unexpected authentication behaviour
@ 2024-08-27 08:00 =?iso-8859-2?Q?Domen_=A9etar?= <[email protected]>
2024-08-27 08:49 ` Re: Unexpected authentication behaviour Wim Bertels <[email protected]>
0 siblings, 1 reply; 3+ messages in thread
From: =?iso-8859-2?Q?Domen_=A9etar?= @ 2024-08-27 08:00 UTC (permalink / raw)
To: [email protected] <[email protected]>
Hi Admins,
I have strange issue that I can't explain to myself:
I want to use scram-sha-256 authentication on postgresql 16.
Parameter password_encryption is set to scram-sha-256. I defined a user with scram-sha-256 encoded password.
My pg_hba.conf have following lines:
# TYPE DATABASE USER ADDRESS METHOD
local all all peer
host all all samenet md5
Even though there is defined md5 authentication method for remote logins in pg_hba.conf I can make remote login to my postgresql server which is unexpected behaviour of postgresql.
What did I miss?
Best regards!
[izum]
Domen Šetar
Computer Systems Support
IZUM - Institute of Information Science | Prešernova ulica 17 | 2000 Maribor | Slovenia
T: +386 2 25 20 339 | M: +386 41 676 342 | www.izum.si<http://www.izum.si/; | [email protected]<mailto:[email protected]>
Attachments:
[image/jpeg] image002.jpg (1.3K, 3-image002.jpg)
download | view image
^ permalink raw reply [nested|flat] 3+ messages in thread
* Re: Unexpected authentication behaviour
2024-08-27 08:00 Unexpected authentication behaviour =?iso-8859-2?Q?Domen_=A9etar?= <[email protected]>
@ 2024-08-27 08:49 ` Wim Bertels <[email protected]>
2024-08-27 09:12 ` RE: Unexpected authentication behaviour Domen Šetar <[email protected]>
0 siblings, 1 reply; 3+ messages in thread
From: Wim Bertels @ 2024-08-27 08:49 UTC (permalink / raw)
To: [email protected] <[email protected]>
Hello Izum
in my memory,
this is the fallback behaviour to a safer auth method (from md5 to
scram), the other way around it doesn't work;
correct me if i'm wrong, should be in the documentation
hth,
Wim
Domen Šetar schreef op di 27-08-2024 om 08:00 [+0000]:
> Hi Admins,
>
> I have strange issue that I can't explain to myself:
>
> I want to use scram-sha-256 authentication on postgresql 16.
> Parameter password_encryption is set to scram-sha-256. I defined a
> user with scram-sha-256 encoded password.
> My pg_hba.conf have following lines:
>
> # TYPE DATABASE USER ADDRESS
> METHOD
> local all
> all peer
> host all all
> samenet md5
>
> Even though there is defined md5 authentication method for remote
> logins in pg_hba.conf I can make remote login to my postgresql server
> which is unexpected behaviour of postgresql.
> What did I miss?
>
> Best regards!
> izum
> Domen Šetar
> Computer Systems Support
> IZUM – Institute of Information Science| Prešernova ulica 17 | 2000
> Maribor |Slovenia
> T: +386 2 25 20 339| M: +386 41 676
> 342|www.izum.si|[email protected]
>
>
>
^ permalink raw reply [nested|flat] 3+ messages in thread
* RE: Unexpected authentication behaviour
2024-08-27 08:00 Unexpected authentication behaviour =?iso-8859-2?Q?Domen_=A9etar?= <[email protected]>
2024-08-27 08:49 ` Re: Unexpected authentication behaviour Wim Bertels <[email protected]>
@ 2024-08-27 09:12 ` Domen Šetar <[email protected]>
0 siblings, 0 replies; 3+ messages in thread
From: Domen Šetar @ 2024-08-27 09:12 UTC (permalink / raw)
To: Wim Bertels <[email protected]>; [email protected] <[email protected]>
Hello Wim,
You are right. I found it in documentation (https://www.postgresql.org/docs/current/auth-password.html):
"The authentication method specification md5 will automatically switch to using the scram-sha-256 method in this case, as explained above, so it will also work."
Thank's for your help.
Best regards!
Domen Šetar
Computer Systems Support
IZUM – Institute of Information Science | Prešernova ulica 17 | 2000 Maribor | Slovenia
T: +386 2 25 20 339 | M: +386 41 676 342 | www.izum.si | [email protected]
-----Original Message-----
From: Wim Bertels <[email protected]>
Sent: Tuesday, August 27, 2024 10:50 AM
To: [email protected]
Subject: Re: Unexpected authentication behaviour
Hello Izum
in my memory,
this is the fallback behaviour to a safer auth method (from md5 to scram), the other way around it doesn't work; correct me if i'm wrong, should be in the documentation
hth,
Wim
Domen Šetar schreef op di 27-08-2024 om 08:00 [+0000]:
> Hi Admins,
>
> I have strange issue that I can't explain to myself:
>
> I want to use scram-sha-256 authentication on postgresql 16.
> Parameter password_encryption is set to scram-sha-256. I defined a
> user with scram-sha-256 encoded password.
> My pg_hba.conf have following lines:
>
> # TYPE DATABASE USER ADDRESS METHOD local all
> all peer host
> all all
> samenet md5
>
> Even though there is defined md5 authentication method for remote
> logins in pg_hba.conf I can make remote login to my postgresql server
> which is unexpected behaviour of postgresql.
> What did I miss?
>
> Best regards!
> izum
> Domen Šetar
> Computer Systems Support
> IZUM – Institute of Information Science| Prešernova ulica 17 | 2000
> Maribor |Slovenia
> T: +386 2 25 20 339| M: +386 41 676
> 342|www.izum.si|[email protected]
>
>
>
^ permalink raw reply [nested|flat] 3+ messages in thread
end of thread, other threads:[~2024-08-27 09:12 UTC | newest]
Thread overview: 3+ messages (download: mbox mbox.gz follow: Atom feed)
-- links below jump to the message on this page --
2024-08-27 08:00 Unexpected authentication behaviour =?iso-8859-2?Q?Domen_=A9etar?= <[email protected]>
2024-08-27 08:49 ` Wim Bertels <[email protected]>
2024-08-27 09:12 ` Domen Šetar <[email protected]>
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox