|
1 | | -<!-- $Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.21 2001/09/21 21:10:56 tgl Exp $ --> |
| 1 | +<!-- $Header: /cvsroot/pgsql/doc/src/sgml/client-auth.sgml,v 1.22 2001/10/04 22:27:18 petere Exp $ --> |
2 | 2 |
|
3 | 3 | <chapter id="client-authentication"> |
4 | 4 | <title>Client Authentication</title> |
@@ -606,15 +606,16 @@ host all 192.168.0.0 255.255.0.0 ident omicron |
606 | 606 | return any user name he chooses. This authentication method is |
607 | 607 | therefore only appropriate for closed networks where each client |
608 | 608 | machine is under tight control and where the database and system |
609 | | - administrators operate in close contact. Heed the warning: |
| 609 | + administrators operate in close contact. In other words, you must |
| 610 | + trust the machine running the ident server. |
| 611 | + Heed the warning: |
610 | 612 | <blockquote> |
611 | 613 | <attribution>RFC 1413</attribution> |
612 | 614 | <para> |
613 | 615 | The Identification Protocol is not intended as an authorization |
614 | 616 | or access control protocol. |
615 | 617 | </para> |
616 | 618 | </blockquote> |
617 | | - You must trust the machine running the ident server. |
618 | 619 | </para> |
619 | 620 |
|
620 | 621 | <para> |
|