Em Monday 03 March 2008 08:08:36 Raymond O'Donnell escreveu:
> On 03/03/2008 11:01, dfx wrote:
> > The question il: Is there a method to avoid to insert the addesses of
> > the clients in the pg_hba.conf and to allow connections from internet
> > with security assured only by username and password?
>
> Yes, that's what people have been explaining: you insert a line
> something like:
>
> host [database] [user] 0.0.0.0/0 md5
But make it "hostssl" instead of "host", to require some cryptography in the
channel used, specially to authenticate the connection.
Opening your access to everyone without crypto sounds like something you don't
want to do. Specially if users can change their own passwords...
--
Jorge Godoy <jgodoy@xxxxxxxxx>
---------------------------(end of broadcast)---------------------------
TIP 1: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to majordomo@xxxxxxxxxxxxxx so that your
message can get through to the mailing list cleanly
