Re: [HACKERS] Kerberos 5 breakage.
Tom Ivar Helbekkmo <tih+mail@hamartun.priv.no>
From: Tom Ivar Helbekkmo <tih+mail@Hamartun.Priv.NO>
To: "Matthew N. Dodd" <winter@jurai.net>
Cc: Bruce Momjian <maillist@candle.pha.pa.us>, pgsql-hackers@postgreSQL.org
Date: 1998-05-20T17:03:31Z
Lists: pgsql-hackers
"Matthew N. Dodd" <winter@jurai.net> writes: > I've compiled with kerberos 4 compatibility mode libraries in kerberos 5 > and it appears to compile, link and run but I've not got a good testbed > for kerberos 4. The Kerberos 4 stuff works fine with real Kerberos 4 libraries. > While Kerberos 5 authentication and authorization is nice, I'd like to > investigate the possibility of adding encryption as well. Absolutely. This should be specified in the pg_hba.conf file, so that you could demand Kerberos authentication plus encryption for sensitive data. When not demanded by pg_hba.conf, it should be a client option. -tih -- Popularity is the hallmark of mediocrity. --Niles Crane, "Frasier"