search

marvel-nccr / ansible-role-aiida

An ansible role that installs and configures AiiDA on Ubuntu.
Other
2 stars 5 forks source link

Enable md5 on Postgresql for RHEL #20

Open espenfl opened 4 years ago

espenfl commented 4 years ago

Right now we use trust policy for Postgresql on RHEL. Change this to md5.

ltalirz commented 1 year ago

One step in this direction can be to only allow passwordless connection for the postgres user, and only via unix domain socket.

I.e.

This means psql -U postgres will still work for any user; pgsu should be able to detect this (? to check)

P.S. Just to be clear: the current settings allow passwordless access to any database user, but only from the host VM. Access to the postgres server from other hosts is disallowed.