[support] SOLVED, sort of, was Recovering Drupal sites after disk failure coinciding with system upgrade - Advice?
Max Pyziur
pyz at brama.com
Fri May 27 18:35:36 UTC 2011
On Fri, 27 May 2011, Ivan Sergio Borgonovo wrote:
> On Thu, 26 May 2011 18:45:19 -0400 (EDT)
> "Max Pyziur" <pyz at brama.com> wrote:
>
>> I changed some settings in
>> /pathtopgsql/data/pg_hba.conf
>
> I'd go with a:
>
> local yourdbname yourusername md5
>
> hostssl yourdbname yourusername 0.0.0.0 0.0.0.0 md5
>
> Beware that when the connection string contains host=localhost php
> drivers may try to connect through tcp/ip not unix sockets and the
> first login method won't work.
> This required some tweaking of core in D5/D6. I'm not sure if this
> problem has been solved in D7.
>
> The second entry is for remote encrypted connection over tcp/ip.
> If you want an encrypted connection you'll have to do some extra
> work to set up certificates.
> DON'T use unencrypted connection over public/semi public connection,
> no matter if you restrict the range of accepted IP.
>
> If you can't succede to use unix sockets you can use tcp/ip on
> localhost at some performance cost.
>
> #ipv4
> host yourdbname yourusername 127.0.0.1/32 md5
> #ipv6
> host yourdbname yourusername ::1/128 md5
Much thanks for your reply. Thoroughly understanding the setup of
pg_hba.conf is important.
I found this item which might be useful in learning about postgresql
security:
http://www.ibm.com/developerworks/opensource/library/os-postgresecurity/index.html
Max Pyziur
pyz at brama.com
More information about the support
mailing list