Hello.
When I sent in the sslmode patch I forgot to update the comments/examples
in pg_hba.conf. This patch remedies that, adds a brief explanation of the
connection types, and adds a missing period in the docs.
Jon
Index: doc/src/sgml/client-auth.sgml
===================================================================
RCS file: /projects/cvsroot/pgsql-server/doc/src/sgml/client-auth.sgml,v
retrieving revision 1.57
diff -c -r1.57 client-auth.sgml
*** doc/src/sgml/client-auth.sgml 5 Sep 2003 20:31:35 -0000 1.57
--- doc/src/sgml/client-auth.sgml 11 Sep 2003 00:20:48 -0000
***************
*** 102,108 ****
<para>
This record matches connection attempts using Unix-domain
sockets. Without a record of this type, Unix-domain socket
! connections are disallowed
</para>
</listitem>
</varlistentry>
--- 102,108 ----
<para>
This record matches connection attempts using Unix-domain
sockets. Without a record of this type, Unix-domain socket
! connections are disallowed.
</para>
</listitem>
</varlistentry>
Index: src/backend/libpq/pg_hba.conf.sample
===================================================================
RCS file: /projects/cvsroot/pgsql-server/src/backend/libpq/pg_hba.conf.sample,v
retrieving revision 1.46
diff -c -r1.46 pg_hba.conf.sample
*** src/backend/libpq/pg_hba.conf.sample 7 Sep 2003 03:36:03 -0000 1.46
--- src/backend/libpq/pg_hba.conf.sample 11 Sep 2003 00:20:48 -0000
***************
*** 7,21 ****
#
# This file controls: which hosts are allowed to connect, how clients
# are authenticated, which PostgreSQL user names they can use, which
! # databases they can access. Records take one of five forms:
#
! # local DATABASE USER METHOD [OPTION]
! # host DATABASE USER IP-ADDRESS IP-MASK METHOD [OPTION]
! # hostssl DATABASE USER IP-ADDRESS IP-MASK METHOD [OPTION]
! # host DATABASE USER IP-ADDRESS/CIDR-MASK METHOD [OPTION]
! # hostssl DATABASE USER IP-ADDRESS/CIDR-MASK METHOD [OPTION]
#
# (The uppercase quantities should be replaced by actual values.)
# DATABASE can be "all", "sameuser", "samegroup", a database name (or
# a comma-separated list thereof), or a file name prefixed with "@".
# USER can be "all", an actual user name or a group name prefixed with
--- 7,26 ----
#
# This file controls: which hosts are allowed to connect, how clients
# are authenticated, which PostgreSQL user names they can use, which
! # databases they can access. Records take one of seven forms:
#
! # local DATABASE USER METHOD [OPTION]
! # host DATABASE USER IP-ADDRESS IP-MASK METHOD [OPTION]
! # hostssl DATABASE USER IP-ADDRESS IP-MASK METHOD [OPTION]
! # hostnossl DATABASE USER IP-ADDRESS IP-MASK METHOD [OPTION]
! # host DATABASE USER IP-ADDRESS/CIDR-MASK METHOD [OPTION]
! # hostssl DATABASE USER IP-ADDRESS/CIDR-MASK METHOD [OPTION]
! # hostnossl DATABASE USER IP-ADDRESS/CIDR-MASK METHOD [OPTION]
#
# (The uppercase quantities should be replaced by actual values.)
+ # The first field is the connection type: "local" is a Unix-domain socket,
+ # "host" is either a plain or SSL-encrypted TCP/IP socket, "hostssl" is an
+ # SSL-encrypted TCP/IP socket, and "hostnossl" is a plain TCP/IP socket.
# DATABASE can be "all", "sameuser", "samegroup", a database name (or
# a comma-separated list thereof), or a file name prefixed with "@".
# USER can be "all", an actual user name or a group name prefixed with
---------------------------(end of broadcast)---------------------------
TIP 7: don't forget to increase your free space map settings
