From owner-freebsd-questions@FreeBSD.ORG  Mon Apr  7 04:19:29 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E22E337B401
	for <freebsd-questions@freebsd.org>;
	Mon,  7 Apr 2003 04:19:29 -0700 (PDT)
Received: from mail.gmx.net (mail.gmx.net [213.165.64.20])
	by mx1.FreeBSD.org (Postfix) with SMTP id 921C943FB1
	for <freebsd-questions@freebsd.org>;
	Mon,  7 Apr 2003 04:19:28 -0700 (PDT)
	(envelope-from blueeskimo@gmx.net)
Received: (qmail 8233 invoked by uid 65534); 7 Apr 2003 11:19:27 -0000
Received: from i216-58-29-174.gta.igs.net (EHLO [216.58.29.174])
	(216.58.29.174)
	by mail.gmx.net (mp017-rz3) with SMTP; 07 Apr 2003 13:19:27 +0200
From: Adam <blueeskimo@gmx.net>
To: freebsd-questions@freebsd.org
In-Reply-To: <20030407093923.GB604@marvin.penguinpowered.org.uk>
References: <20030407093923.GB604@marvin.penguinpowered.org.uk>
Content-Type: text/plain
Organization: 
Message-Id: <1049714365.64457.5.camel@jake>
Mime-Version: 1.0
X-Mailer: Ximian Evolution 1.2.4 
Date: 07 Apr 2003 07:19:25 -0400
Content-Transfer-Encoding: 7bit
Subject: Re: Postgres + MD5 Auth
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Apr 2003 11:19:30 -0000

On Mon, 2003-04-07 at 05:39, Wayne Pascoe wrote:
> Hi all,
> 
> Sorry to bug twice on one day, but does anyone know what I have to
> change in the startup scripts for PostgreSQL (010.pgsql.sh) to make it
> work with password authentication?
> 
> I've setup pg_hba.conf to use encrypted passwords (md5), but then
> starting Postgres prompts for a password. This is not great for when the
> machine reboots and no-one is around to enter this.
> 
> Is there any way of passing pgsql's password to the script ? 

Since 'pgsql' is a local user with no login privileges, I see no reason
to try putting a password for that particular user.

Here's how my pg_hba.conf looks:
local   all         eskimo                                         md5
local   all         pgsql                                          trust
host    all         eskimo      192.168.56.0      255.255.255.0    md5
local   all         root                                           md5

If you find a better way, or a reason that this is insecure, let me
know.


-- 
Adam <blueeskimo@gmx.net>