database/postgres
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-11-16 15:02:33 +03:00
Code Activity
Files
2036b3fc597e4e39b87a185a60e51b2467d50783
postgres/src/backend/libpq
History
Bruce Momjian 43a3543a4e Authentication improvements: 
A new pg_hba.conf column, USER
Allow specifiction of lists of users separated by commas
Allow group names specified by +
Allow include files containing lists of users specified by @
Allow lists of databases, and database files
Allow samegroup in database column to match group name matching dbname
Removal of secondary password files
Remove pg_passwd utility
Lots of code cleanup in user.c and hba.c
New data/global/pg_pwd format
New data/global/pg_group file
2002-04-04 04:25:54 +00:00
..
auth.c
Authentication improvements:
2002-04-04 04:25:54 +00:00
be-fsstubs.c
Change made to elog:
2002-03-06 06:10:59 +00:00
crypt.c
Authentication improvements:
2002-04-04 04:25:54 +00:00
hba.c
Authentication improvements:
2002-04-04 04:25:54 +00:00
Makefile
Authentication improvements:
2002-04-04 04:25:54 +00:00
md5.c
Improve comments about duplicate files.
2001-11-18 23:02:19 +00:00
pg_hba.conf.sample
Authentication improvements:
2002-04-04 04:25:54 +00:00
pg_ident.conf.sample
Add mention of SIGHUP for pg_ident.conf.
2001-08-01 00:52:19 +00:00
pqcomm.c
Replace perror() calls by elog()s, so that messages can be routed to
2002-04-03 00:44:27 +00:00
pqformat.c
Further work on elog cleanup: fix some bogosities in elog's logic about
2002-03-04 01:46:04 +00:00
pqsignal.c
New pgindent run with fixes suggested by Tom. Patch manually reviewed,
2001-11-05 17:46:40 +00:00
README.SSL
Add README.SSL
1999-09-27 03:16:09 +00:00

README.SSL 

>From the servers perspective:


  Receives StartupPacket
           |
           |
 (Is SSL_NEGOTIATE_CODE?) -----------  Normal startup
           |                  No
           |
           | Yes
           |
           |
 (Server compiled with USE_SSL?) ------- Send 'N'
           |                       No        |
           |                                 |
           | Yes                         Normal startup
           |
           |
        Send 'S'
           |
           |
      Establish SSL
           |
           |
      Normal startup
     




>From the clients perspective (v6.6 client _with_ SSL):


      Connect
         |
         |
  Send packet with SSL_NEGOTIATE_CODE
         |
         |
  Receive single char  ------- 'S' -------- Establish SSL
         |                                       |
         | '<else>'                              |
         |                                  Normal startup
         |
         |
   Is it 'E' for error  ------------------- Retry connection
         |                  Yes             without SSL
         | No
         |
   Is it 'N' for normal ------------------- Normal startup
         |                  Yes
         |
   Fail with unknown
View Git Blame Copy Permalink