Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to content

Commit 226bae2

Browse files
bmomjianbmomjian
committed
Add mention that Kerberos 4 isn't recommended.
1 parent edc999b commit 226bae2

File tree

2 files changed

+17
-12
lines changed

2 files changed

+17
-12
lines changed

doc/TODO

+2-2
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
TODO list for PostgreSQL
22
========================
3-
Last updated: Tue Aug 12 18:04:15 EDT 2003
3+
Last updated: Sat Aug 16 16:51:46 EDT 2003
44

55
Current maintainer: Bruce Momjian (pgman@candle.pha.pa.us)
66

@@ -479,7 +479,7 @@ Source Code
479479
* Acquire lock on a relation before building a relcache entry for it
480480
* Research interaction of setitimer() and sleep() used by statement_timeout
481481
* Add checks for fclose() failure
482-
* Change CVS $Id: TODO,v 1.1115 2003/08/13 03:12:04 momjian Exp $ to $PostgreSQL: pgsql/doc/TODO,v 1.1115 2003/08/13 03:12:04 momjian Exp $
482+
* Change CVS $Id: TODO,v 1.1116 2003/08/16 23:33:49 momjian Exp $ to $PostgreSQL: pgsql/doc/TODO,v 1.1116 2003/08/16 23:33:49 momjian Exp $
483483
* Exit postmaster if postgresql.conf can not be opened
484484
* Rename /scripts directory because they are all C programs now
485485
* Allow the regression tests to start postmaster with -i so the tests

doc/src/sgml/client-auth.sgml

+15-10
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
<!--
2-
$Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.53 2003/07/26 13:50:01 momjian Exp $
2+
$Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.54 2003/08/16 23:33:49 momjian Exp $
33
-->
44

55
<chapter id="client-authentication">
@@ -610,16 +610,21 @@ local db1,db2,@demodbs all md5
610610

611611
<para>
612612
<productname>Kerberos</productname> is an industry-standard secure
613-
authentication system suitable for distributed computing over a
614-
public network. A description of the
615-
<productname>Kerberos</productname> system is far beyond the scope
616-
of this document; in all generality it can be quite complex (yet
617-
powerful). The <ulink
613+
authentication system suitable for distributed computing over a public
614+
network. A description of the <productname>Kerberos</productname> system
615+
is far beyond the scope of this document; in all generality it can be
616+
quite complex (yet powerful). The <ulink
618617
url="http://www.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html">Kerberos
619-
<acronym>FAQ</></ulink> or <ulink
620-
url="ftp://athena-dist.mit.edu">MIT Project Athena</ulink> can be
621-
a good starting point for exploration. Several sources for
622-
<productname>Kerberos</> distributions exist.
618+
<acronym>FAQ</></ulink> or <ulink url="ftp://athena-dist.mit.edu">MIT
619+
Project Athena</ulink> can be a good starting point for exploration.
620+
Several sources for <productname>Kerberos</> distributions exist.
621+
</para>
622+
623+
<para>
624+
While <productname>PostgreSQL</> supports both Kerberos 4 and
625+
Kerberos 5, only Kerberos 5 is recommended. Kerberos 4 is
626+
considered insecure and no longer recommended for general
627+
use.
623628
</para>
624629

625630
<para>

0 commit comments

Comments
 (0)