Skip to content

Commit 226bae2

Browse files
committed
Add mention that Kerberos 4 isn't recommended.
1 parent edc999b commit 226bae2

File tree

2 files changed

+17
-12
lines changed

2 files changed

+17
-12
lines changed

doc/TODO

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
TODO list for PostgreSQL
22
========================
3-
Last updated: Tue Aug 12 18:04:15 EDT 2003
3+
Last updated: Sat Aug 16 16:51:46 EDT 2003
44

55
Current maintainer: Bruce Momjian (pgman@candle.pha.pa.us)
66

@@ -479,7 +479,7 @@ Source Code
479479
* Acquire lock on a relation before building a relcache entry for it
480480
* Research interaction of setitimer() and sleep() used by statement_timeout
481481
* Add checks for fclose() failure
482-
* Change CVS $Id: TODO,v 1.1115 2003/08/13 03:12:04 momjian Exp $ to $PostgreSQL: pgsql/doc/TODO,v 1.1115 2003/08/13 03:12:04 momjian Exp $
482+
* Change CVS $Id: TODO,v 1.1116 2003/08/16 23:33:49 momjian Exp $ to $PostgreSQL: pgsql/doc/TODO,v 1.1116 2003/08/16 23:33:49 momjian Exp $
483483
* Exit postmaster if postgresql.conf can not be opened
484484
* Rename /scripts directory because they are all C programs now
485485
* Allow the regression tests to start postmaster with -i so the tests

doc/src/sgml/client-auth.sgml

Lines changed: 15 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
<!--
2-
$Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.53 2003/07/26 13:50:01 momjian Exp $
2+
$Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.54 2003/08/16 23:33:49 momjian Exp $
33
-->
44

55
<chapter id="client-authentication">
@@ -610,16 +610,21 @@ local db1,db2,@demodbs all md5
610610

611611
<para>
612612
<productname>Kerberos</productname> is an industry-standard secure
613-
authentication system suitable for distributed computing over a
614-
public network. A description of the
615-
<productname>Kerberos</productname> system is far beyond the scope
616-
of this document; in all generality it can be quite complex (yet
617-
powerful). The <ulink
613+
authentication system suitable for distributed computing over a public
614+
network. A description of the <productname>Kerberos</productname> system
615+
is far beyond the scope of this document; in all generality it can be
616+
quite complex (yet powerful). The <ulink
618617
url="http://www.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html">Kerberos
619-
<acronym>FAQ</></ulink> or <ulink
620-
url="ftp://athena-dist.mit.edu">MIT Project Athena</ulink> can be
621-
a good starting point for exploration. Several sources for
622-
<productname>Kerberos</> distributions exist.
618+
<acronym>FAQ</></ulink> or <ulink url="ftp://athena-dist.mit.edu">MIT
619+
Project Athena</ulink> can be a good starting point for exploration.
620+
Several sources for <productname>Kerberos</> distributions exist.
621+
</para>
622+
623+
<para>
624+
While <productname>PostgreSQL</> supports both Kerberos 4 and
625+
Kerberos 5, only Kerberos 5 is recommended. Kerberos 4 is
626+
considered insecure and no longer recommended for general
627+
use.
623628
</para>
624629

625630
<para>

0 commit comments

Comments
 (0)
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy