X-Original-To: pgsql-committers-postgresql.org@localhost.postgresql.org Received: from localhost (unknown [200.46.204.144]) by svr1.postgresql.org (Postfix) with ESMTP id 4077153518 for ; Thu, 28 Apr 2005 19:23:49 -0300 (ADT) Received: from svr1.postgresql.org ([200.46.204.71]) by localhost (av.hub.org [200.46.204.144]) (amavisd-new, port 10024) with ESMTP id 38435-07 for ; Thu, 28 Apr 2005 22:23:38 +0000 (GMT) Received: from mail.gmx.net (imap.gmx.net [213.165.64.20]) by svr1.postgresql.org (Postfix) with SMTP id B5AB153500 for ; Thu, 28 Apr 2005 19:23:33 -0300 (ADT) Received: (qmail invoked by alias); 28 Apr 2005 22:23:35 -0000 Received: from dsl-082-083-254-195.arcor-ip.net (EHLO colt.pezone.net) [82.83.254.195] by mail.gmx.net (mp014) with SMTP; 29 Apr 2005 00:23:35 +0200 X-Authenticated: #495269 From: Peter Eisentraut To: Tom Lane Subject: Re: pgsql: Mention that PAM requires the user already exist in the database, Date: Fri, 29 Apr 2005 00:23:33 +0200 User-Agent: KMail/1.7.2 Cc: Bruce Momjian , pgsql-committers@postgresql.org References: <20050426030113.C9CC4534F8@svr1.postgresql.org> <28107.1114492614@sss.pgh.pa.us> In-Reply-To: <28107.1114492614@sss.pgh.pa.us> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-15" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200504290023.34183.peter_e@gmx.net> X-Y-GMX-Trusted: 0 X-Virus-Scanned: by amavisd-new at hub.org X-Spam-Status: No, hits=0.015 tagged_above=0 required=5 tests=AWL X-Spam-Level: X-Archive-Number: 200504/450 X-Sequence-Number: 17373 Tom Lane wrote: > I don't recall exactly what Dick suggested, but the patch as applied > seems like fairly useless verbiage. Exactly which of our other auth > methods allow users who *don't* exist in the database to log in? > And why would anyone find it surprising that this does not happen? I think the difference is that PAM carries a user list of its own, and users might be led to believe that it's enough to create a user in the PAM system and it will automatically exist in the database. With the other authentication methods, there is no external user list. -- Peter Eisentraut http://developer.postgresql.org/~petere/