On Mon, 2003-05-26 at 08:19, Andreas Tille wrote: > Thus the postgresql server has to allow connections of non system users > from localhost and also from other hosts (GnuMed clients) in the next step > while keeping the possibility to authenticate via ident.
In 7.3, you can specify connection/database/user combinations with associated authentication methods. If you want to use ident where possible and fall back on password, pg_hba.conf should look something like this: CONNECTION DATABASE USER IPADDR IPMASK METHOD OPTION local all postgres ident sameuser local db1 fred ident sameuser local db1 george ident sameuser local db2 @db2.list ident sameuser local all all md5 host all all 0.0.0.0 255.255.255.255 md5 So system logins fred and george can connect to db2 without a password; any system user listed in $PGDATA/db2.list can similarly connect to db2; postgres can connect to any database (necessary for backups) and any other connection/database/user combination needs an md5-encrypted password. -- Oliver Elphick [EMAIL PROTECTED] Isle of Wight, UK http://www.lfix.co.uk/oliver GPG: 1024D/3E1D0C1C: CA12 09E0 E8D5 8870 5839 932A 614D 4C34 3E1D 0C1C ======================================== "Let nothing be done through strife or vainglory; but in lowliness of mind let each esteem other better than themselves." Philippians 2:3