Re: [HACKERS] pgsql/php3/apache authentication

Peter Eisentraut <e99re41@docs.uu.se>

From: Peter Eisentraut <e99re41@DoCS.UU.SE>
To: Malcolm Beattie <mbeattie@sable.ox.ac.uk>
Cc: Jim Mercer <jim@reptiles.org>, pgsql-general@postgresql.org, pgsql-hackers@postgresql.org
Date: 2000-04-28T08:09:25Z
Lists: pgsql-hackers
On Thu, 27 Apr 2000, Malcolm Beattie wrote:

> > There's no way for the server to determine the system user name of the
> > other end of a domain socket; at least no one has implemented one yet. So
> > essentially this isn't going to work.
> 
> The client can pass an SCM_CREDENTIALS (Linux) or SCM_CREDS (BSDish)
> socket control message down the Unix domain socket and the kernel will
> fill in the client's credentials (including PID, uid and gid) for the
> receiver to read. Some Unices don't support this though.

This might be doable but I think I'd like to see exactly how many Unices
support this. I wouldn't be too excited about a solution that only works
on Linux and ???BSD (or any other combination). Is there any way one can
check?


-- 
Peter Eisentraut                  Sernanders väg 10:115
peter_e@gmx.net                   75262 Uppsala
http://yi.org/peter-e/            Sweden