- 20 Dec, 2004 1 commit
-
-
Tom Lane authored
its presence. This amounts to desupporting Kerberos 5 releases 1.0.*, which is small loss, and simplifies use of our Kerberos code on platforms with Red-Hat-style include file layouts. Per gripe from John Gray and followup discussion.
-
- 12 Oct, 2004 1 commit
-
-
Peter Eisentraut authored
-
- 29 Aug, 2004 2 commits
-
-
Bruce Momjian authored
-
Bruce Momjian authored
-
- 04 Aug, 2004 2 commits
-
-
Dennis Bjorklund authored
real gettext() later on, so it was called twice before.
-
Dennis Bjorklund authored
that makes it impossible to translate to other languages.
-
- 20 Dec, 2003 1 commit
-
-
Tom Lane authored
ill-considered conditional logic in getpeereid patch of 3-Dec-2002). Per bug #1021.
-
- 29 Nov, 2003 1 commit
-
-
PostgreSQL Daemon authored
$Header: -> $PostgreSQL Changes ...
-
- 26 Sep, 2003 1 commit
-
-
Peter Eisentraut authored
-
- 25 Sep, 2003 1 commit
-
-
Peter Eisentraut authored
terms, add some clarifications, fix some untranslatable attempts at dynamic message building.
-
- 04 Aug, 2003 2 commits
-
-
Bruce Momjian authored
-
Bruce Momjian authored
-
- 28 Jul, 2003 1 commit
-
-
Tom Lane authored
-
- 26 Jul, 2003 2 commits
-
-
Bruce Momjian authored
-
Bruce Momjian authored
modes (and replace the requiressl boolean). The four options were first spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email to pgsql-hackers, archived here: http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php My original less-flexible patch and the ensuing thread are archived at: http://dbforums.com/t623845.html Attached is a new patch, including documentation. To sum up, there's a new client parameter "sslmode" and environment variable "PGSSLMODE", with these options: sslmode description ------- ----------- disable Unencrypted non-SSL only allow Negotiate, prefer non-SSL prefer Negotiate, prefer SSL (default) require Require SSL The only change to the server is a new pg_hba.conf line type, "hostnossl", for specifying connections that are not allowed to use SSL (for example, to prevent servers on a local network from accidentally using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are: pg_hba.conf line types ---------------------- host applies to either SSL or regular connections hostssl applies only to SSL connections hostnossl applies only to regular connections These client and server options, the postgresql.conf ssl = false option, and finally the possibility of compiling with no SSL support at all, make quite a range of combinations to test. I threw together a test script to try many of them out. It's in a separate tarball with its config files, a patch to psql so it'll announce SSL connections even in absence of a tty, and the test output. The test is especially informative when run on the same tty the postmaster was started on, so the FATAL: errors during negotiation are interleaved with the psql client output. I saw Tom write that new submissions for 7.4 have to be in before midnight local time, and since I'm on the east coast in the US, this just makes it in before the bell. :) Jon Jensen
-
- 23 Jul, 2003 1 commit
-
-
Tom Lane authored
was modified for IPv6. Use a robust definition of struct sockaddr_storage, do a proper configure test to see if ss_len exists, don't assume that getnameinfo() will handle AF_UNIX sockets, don't trust getaddrinfo to return the protocol we ask for, etc. This incorporates several outstanding patches from Kurt Roeckx, but I'm to blame for anything that doesn't work ...
-
- 22 Jul, 2003 1 commit
-
-
Tom Lane authored
Along the way, fix some logic problems in pgstat_initstats, notably the bogus assumption that malloc returns zeroed memory.
-
- 25 Jun, 2003 1 commit
-
-
Bruce Momjian authored
> http://developer.postgresql.org/cvsweb.cgi/pgsql-server/src/include/libpq/pqcomm.h.diff?r1=1.85&r2=1.86 > > modified SockAddr, but no corresponding change was made here > (fe-auth.c:612): > > case AUTH_REQ_KRB5: > #ifdef KRB5 > if (pg_krb5_sendauth(PQerrormsg, conn->sock, &conn->laddr.in, > &conn->raddr.in, > hostname) != STATUS_OK) > > It's not obvious to me what the change ought to be though. This patch should hopefully fix both kerberos 4 and 5. Kurt Roeckx
-
- 12 Jun, 2003 1 commit
-
-
Bruce Momjian authored
Kurt Roeckx Andrew Dunstan
-
- 25 Apr, 2003 1 commit
-
-
Tom Lane authored
-
- 22 Apr, 2003 1 commit
-
-
Tom Lane authored
have length words. COPY OUT reimplemented per new protocol: it doesn't need \. anymore, thank goodness. COPY BINARY to/from frontend works, at least as far as the backend is concerned --- libpq's PQgetline API is not up to snuff, and will have to be replaced with something that is null-safe. libpq uses message length words for performance improvement (no cycles wasted rescanning long messages), but not yet for error recovery.
-
- 19 Apr, 2003 1 commit
-
-
Tom Lane authored
have length counts, and COPY IN data is packetized into messages.
-
- 17 Apr, 2003 1 commit
-
-
Tom Lane authored
with variable-width fields. No more truncation of long user names. Also, libpq can now send its environment-variable-driven SET commands as part of the startup packet, saving round trips to server.
-
- 14 Feb, 2003 1 commit
-
-
Bruce Momjian authored
-
- 06 Jan, 2003 2 commits
-
-
Peter Eisentraut authored
-
Bruce Momjian authored
if the OS supports it. Code will still compile on non-IPv6-aware machines (feature added by Bruce). Nigel Kukard
-
- 06 Dec, 2002 2 commits
-
-
Bruce Momjian authored
-
Bruce Momjian authored
postgresql version 7.3, but yea... this patch adds full IPv6 support to postgres. I've tested it out on 7.2.3 and has been running perfectly stable. CREDITS: The KAME Project (Initial patch) Nigel Kukard <nkukard@lbsd.net> Johan Jordaan <johanj@lando.co.za>
-
- 03 Dec, 2002 1 commit
-
-
Bruce Momjian authored
supported.
-
- 04 Sep, 2002 2 commits
-
-
Tom Lane authored
users, by limiting the length of string we will accept for a password. Patch by Serguei Mokhov, some editorializing by Tom Lane.
-
Bruce Momjian authored
-
- 02 Sep, 2002 1 commit
-
-
Bruce Momjian authored
because c.h has sys/types.h.
-
- 30 Aug, 2002 1 commit
-
-
Bruce Momjian authored
Improve wording of pre-7.3 syntax mention.
-
- 29 Aug, 2002 2 commits
-
-
Bruce Momjian authored
memory. Neil Conway
-
Tom Lane authored
This breaks support for 6.2 or older client libraries.
-
- 27 Aug, 2002 2 commits
-
-
Bruce Momjian authored
(using an elog(LOG) ), as well as includes a few more comment fixes. Neil Conway
-
Bruce Momjian authored
-
- 18 Aug, 2002 1 commit
-
-
Bruce Momjian authored
-
- 20 Jun, 2002 1 commit
-
-
Bruce Momjian authored
-
- 05 May, 2002 1 commit
-
-
Tom Lane authored
As proof of concept, provide an alternate implementation based on POSIX semaphores. Also push the SysV shared-memory implementation into a separate file so that it can be replaced conveniently.
-