James B. Byrne
2005-Jun-08 13:53 UTC
[CentOS] Need help with postgresql authentication set up
OS - CentOS4
PostgreSQL = 8.0.3
I think that I need to locate a custom pam module to use in
pg_hba.conf that will allow phpPgAdmin to authenticate users
against /etc/password (shadow). I cannot seem to find a straight
forward reference to such a beast either in the documentation or on
the web. The pam modules that I have found through google seem to
be intended to allow one to authenticate against a pg database
rather than designed to allow postmast to authenticate users
against unix.
pam_unix modules do not seem work perhaps because postmast runs as
user postgres and this user does not posses sufficient authority to
access /etc/passwd etc.
Any help would be gratefully accepted.
Regards,
Jim
--
*** e-mail is not a secure channel ***
mailto:byrnejb.<token>@harte-lyne.ca
James B. Byrne Harte & Lyne Limited
vox: +1 905 561 1241 9 Brockley Drive
fax: +1 905 561 0757 Hamilton, Ontario
<token> = hal Canada L8E 3C3
On Wednesday 08 June 2005 09:53, James B. Byrne wrote:> I think that I need to locate a custom pam module to use in > pg_hba.conf that will allow phpPgAdmin to authenticate users > against /etc/password (shadow). I cannot seem to find a straight > forward reference to such a beast either in the documentation or on > the web. The pam modules that I have found through google seem to > be intended to allow one to authenticate against a pg database > rather than designed to allow postmast to authenticate users > against unix.> pam_unix modules do not seem work perhaps because postmast runs as > user postgres and this user does not posses sufficient authority to > access /etc/passwd etc.You'll get good answers from the pgsql-admin at postgresql.org list; this is a generic PostgreSQL issue. PostgreSQL does its own authentication and permissions that are completely independent of the Unix/PAM auth in use. Having said that, see http://www.postgresql.org/docs/8.0/interactive/auth-methods.html#AUTH-PAM for more information about auth with PAM. The gist is that the user must exist in the database as well as in the PAM subsystem used. Also see the parent of the above URL. -- Lamar Owen Director of Information Technology Pisgah Astronomical Research Institute 1 PARI Drive Rosman, NC 28772 (828)862-5554 www.pari.edu