public inbox for [email protected]
help / color / mirror / Atom feedRe: Test mail for pgsql-general
2+ messages / 2 participants
[nested] [flat]
* Re: Test mail for pgsql-general
@ 2024-09-10 23:21 Chris Miller <[email protected]>
2024-09-10 23:27 ` Re: Test mail for pgsql-general Adrian Klaver <[email protected]>
0 siblings, 1 reply; 2+ messages in thread
From: Chris Miller @ 2024-09-10 23:21 UTC (permalink / raw)
To: pgsql-general <[email protected]>
Hi Folks,
I am confused about authentication. I understand that in the local connection case, I have choices of “peer”, and “md5” (password).
In pg_hba.conf, I have the lines:
local all all peer
local all all md5
I have an OS user “postgres”, and I can “su – postgres”, which brings me to a shell and I can invoke psql successfully.
I believe that, as root, I should be able to “psql -U postgres -W” and logon with a password. I can’t. When I try, I get:
psql: error: connection to server on socket "/var/run/postgresql/.s.PGSQL.5432" failed: FATAL: Peer authentication failed for user "postgres"
Notice I am failing “peer” authentication. Seems to me that if I explicitly ask for a password, “-W”, I should be using “md5” authentication.
Can anybody straighten me out?
Thanks for the help,
--
Chris.
^ permalink raw reply [nested|flat] 2+ messages in thread
* Re: Test mail for pgsql-general
2024-09-10 23:21 Re: Test mail for pgsql-general Chris Miller <[email protected]>
@ 2024-09-10 23:27 ` Adrian Klaver <[email protected]>
0 siblings, 0 replies; 2+ messages in thread
From: Adrian Klaver @ 2024-09-10 23:27 UTC (permalink / raw)
To: Chris Miller <[email protected]>; pgsql-general <[email protected]>
On 9/10/24 16:21, Chris Miller wrote:
> Hi Folks,
>
> I am confused about authentication. I understand that in the local
> connection case, I have choices of “peer”, and “md5” (password).
>
>
> In pg_hba.conf, I have the lines:
>
>
> local all all peer
>
> local all all md5
>
>
> I have an OS user “postgres”, and I can “su – postgres”, which brings me
> to a shell and I can invoke psql successfully.
>
>
> I believe that, as root, I should be able to “psql -U postgres -W” and
> logon with a password. I can’t. When I try, I get:
>
>
> psql: error: connection to server on socket
> "/var/run/postgresql/.s.PGSQL.5432" failed: FATAL: Peer authentication
> failed for user "postgres"
>
>
> Notice I am failing “peer” authentication. Seems to me that if I
> explicitly ask for a password, “-W”, I should be using “md5” authentication.
First match wins loses in this case. The entries are processed top to
bottom the first the one matches in this case:
local all all peer
Per
https://www.postgresql.org/docs/16/auth-pg-hba-conf.html
"The first record with a matching connection type, client address,
requested database, and user name is used to perform authentication.
There is no “fall-through” or “backup”: if one record is chosen and the
authentication fails, subsequent records are not considered. If no
record matches, access is denied."
The -W is a no-op per:
https://www.postgresql.org/docs/16/app-psql.html
-W
--password
Force psql to prompt for a password before connecting to a
database, even if the password will not be used.
>
>
> Can anybody straighten me out?
>
>
> Thanks for the help,
> --
> Chris.
--
Adrian Klaver
[email protected]
^ permalink raw reply [nested|flat] 2+ messages in thread
end of thread, other threads:[~2024-09-10 23:27 UTC | newest]
Thread overview: 2+ messages (download: mbox mbox.gz follow: Atom feed)
-- links below jump to the message on this page --
2024-09-10 23:21 Re: Test mail for pgsql-general Chris Miller <[email protected]>
2024-09-10 23:27 ` Adrian Klaver <[email protected]>
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox