Um 05:11 Uhr am 01.07.06 schrieb John Goerzen:
> On Thu, Jun 29, 2006 at 05:36:41PM +0200, Kern Sibbald wrote:
>> I don't consider this an upstream bug, but rather a problem of
>> administration
>> of database access to be resolved at installation time.
> The Debian bacula packages will help you set up a bacula username and
> password for use with MD5 on install time as well.
I see two problems here:
a) debconf allows the user to use "ident sameuser", but this cannot work
without manually changing the init-script or putting a
local bacula bacula trust sameuser
into pg_hba.conf (which is of course totally insecure).
So please remove this option from the package.
b) "ident sameuser" is the only method configured for "local" type
connections using the unix socket of postgres. While _I_ am perfectly
able to reconfigure postgres to also require md5 when using the
socket, other users might expect bacula and postgres to just work out
of the box (which it does with mysql or sqlite).
So please change the package to use "host"-type connections which are
already configured to use md5 and remove the option to use the ident
method.
Grüße,
Sven.
--
Sven Hartge -- professioneller Unix-Geek
Meine Gedanken im Netz: http://www.svenhartge.de/
Achtung, neue Mail-Adresse: [EMAIL PROTECTED]
