On Fri, Apr 01, 2005 at 11:18:13 +0530, "Vishal Kashyap @ [SaiHertz]" <vishalonlist@xxxxxxxxx> wrote: > > I suggest allowing the 'postgres' user to connect with 'ident sameuser' > > in pg_hba.conf from the localhost only, then always just run pg_dump as > > 'postgres'. > > That means > > # TYPE DATABASE USER IP-ADDRESS IP-MASK METHOD > host <mydb> <myuser> localhost 255.255.255.255 > ident sameuser > > only <myuser> will NOT be asked for password when it does > pg_dump -U <myuser> > when logged in to its shell account with <myuser> > and If I run a crontab with user <myuser> the above lines again stands true. > > > What you say ? Don't do this as a host entry if your OS supports domain sockets with getpeerid. Use a 'local' entry. That way you don't need to run an ident server. You also have the option to set up custom map entries so that the OS user is not the same as the DB user.
