{"id":15429,"date":"2024-11-17T21:05:34","date_gmt":"2024-11-17T13:05:34","guid":{"rendered":"https:\/\/fwq.ai\/blog\/?p=15429"},"modified":"2024-11-17T21:05:34","modified_gmt":"2024-11-17T13:05:34","slug":"postgresql%e7%9a%84pg_hba-conf-%e5%ae%a2%e6%88%b7%e7%ab%af%e8%ae%a4%e8%af%81","status":"publish","type":"post","link":"https:\/\/fwq.ai\/blog\/15429\/","title":{"rendered":"PostgreSQL\u7684pg_hba.conf \u5ba2\u6237\u7aef\u8ba4\u8bc1"},"content":{"rendered":"

\u8ba4\u8bc1\u662f\u6570\u636e\u5e93\u670d\u52a1\u5668\u5bf9\u5ba2\u6237\u7aef\u7528\u6237\u8eab\u4efd\u9274\u522b\u7684\u8fc7\u7a0b\uff0c\u5e76\u4e14\u786e\u5b9a\u5ba2\u6237\u7aef\u4ee5\u8be5\u7528\u6237\u662f\u5426\u53ef\u4ee5\u8fde\u63a5\u6570\u636e\u5e93\u670d\u52a1\u5668\u3002PostgreSQL\u63d0\u4f9b\u591a\u79cd\u4e0d\u540c\u7684\u5ba2\u6237\u7aef\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u800cpg_hba.conf\u5c31\u662f\u5ba2\u6237\u7aef\u8ba4\u8bc1\u7684\u914d\u7f6e\u6587\u4ef6\uff0cpg_hba\u5373PostGreSQL host-base authentication\u7684\u7b80\u79f0\u3002<\/p>\n

\u4e00\u3001\u8bed\u6cd5\u683c\u5f0f<\/h1>\n
TYPE\u00a0      DATABASE\u00a0 USER\u00a0 CIDR-ADDRESS\u00a0 METHOD<\/strong>\r\nlocal\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 auth-method\u00a0 [auth-options]\r\nhost\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options]\r\nhostssl\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options]\r\nhostnossl\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options]\r\nhost\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options]\r\nhostssl\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options]\r\nhostnossl\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options]<\/pre>\n
1.1\u00a0TYPE<\/strong><\/p>\n
    \n
  • local\uff1a<\/strong>\u4f7f\u7528\u672c\u5730unix\u5957\u63a5\u5b57\u3002<\/li>\n
  • host\uff1a<\/strong>\u4f7f\u7528TCP\/IP\u8fde\u63a5\uff08\u5305\u62ecSSL\u548c\u975eSSL)\uff0c\u7ed3\u5408\u201cIPv4\u5730\u5740\u201d\u4f7f\u7528IPv4\u65b9\u5f0f\uff0c\u7ed3\u5408\u201cIPv6\u5730\u5740\u201d\u5219\u4f7f\u7528IPv6\u65b9\u5f0f\u3002<\/li>\n
  • hostssl\uff1a<\/strong>\u53ea\u80fd\u4f7f\u7528SSL TCP\/IP\u8fde\u63a5\u3002<\/li>\n
  • hostnossl\uff1a<\/strong>\u4e0d\u80fd\u4f7f\u7528SSL TCP\/IP\u8fde\u63a5\u3002<\/li>\n<\/ul>\n
    1.2 DATABASE<\/strong><\/p>\n
    \u6307\u5b9a\u54ea\u4e2a\u6570\u636e\u5e93\uff0c\u591a\u4e2a\u6570\u636e\u5e93\uff0c\u5e93\u540d\u95f4\u4ee5\u9017\u53f7\u5206\u9694\u3002\u201call\u201d\u53ea\u6709\u5728\u6ca1\u6709\u5176\u4ed6\u7684\u7b26\u5408\u6761\u76ee\u65f6\u624d\u4ee3\u8868\u201c\u6240\u6709\u201d\uff0c\u5982\u679c\u6709\u5176\u4ed6\u7684\u7b26\u5408\u6761\u76ee\u5219\u4ee3\u8868\u201c\u9664\u4e86\u8be5\u6761\u4e4b\u5916\u7684\u201d\uff0c\u56e0\u4e3a\u201call\u201d\u7684\u4f18\u5148\u7ea7\u6700\u4f4e\u3002\u5982\u4e0b\u4f8b\uff1a<\/p>\n
    local\u00a0\u00a0\u00a0 db1\u00a0\u00a0\u00a0 user1\u00a0\u00a0\u00a0 reject\r\nlocal\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0   ident<\/pre>\n
    \u8fd9\u4e24\u6761\u90fd\u662f\u6307\u5b9alocal\u8bbf\u95ee\u65b9\u5f0f\uff0c\u56e0\u4e3a\u524d\u4e00\u6761\u6307\u5b9a\u4e86\u7279\u5b9a\u7684\u6570\u636e\u5e93db1\uff0c\u6240\u4ee5\u540e\u4e00\u6761\u7684all\u4ee3\u8868\u7684\u662f\u9664\u4e86db1\u4e4b\u5916\u7684\u6570\u636e\u5e93\uff0c\u540c\u7406\u7528\u6237\u7684all\u4e5f\u662f\u8fd9\u4e2a\u9053\u7406\u3002replication:\u6307\u590d\u5236\u64cd\u4f5c,\u56e0\u4e3a\u590d\u5236\u64cd\u4f5c\u4e0d\u9700\u8981\u5236\u5b9a\u6570\u636e\u5e93\u3002<\/p>\n
    1.3\u00a0USER<\/strong><\/p>\n
    \u6307\u5b9a\u54ea\u4e2a\u6570\u636e\u5e93\u7528\u6237\uff08PostgreSQL\u6b63\u89c4\u7684\u53eb\u6cd5\u662f\u89d2\u8272\uff0crole\uff09\u3002\u591a\u4e2a\u7528\u6237\u4ee5\u9017\u53f7\u5206\u9694\u3002<\/p>\n
    1.4 CIDR-ADDRESS<\/strong><\/p>\n
    local\u65b9\u5f0f\u4e0d\u5fc5\u586b\u5199\uff0c\u8be5\u9879\u53ef\u4ee5\u662fIPv4\u5730\u5740\u6216IPv6\u5730\u5740\uff0c\u53ef\u4ee5\u5b9a\u4e49\u67d0\u53f0\u4e3b\u673a\u6216\u67d0\u4e2a\u7f51\u6bb5\u3002<\/p>\n
    1.5 METHOD<\/strong><\/p>\n
    \u6307\u5b9a\u5982\u4f55\u5904\u7406\u5ba2\u6237\u7aef\u7684\u8ba4\u8bc1\u3002\u5305\u62ec\u5305\u542b\u9009\u9879\u6709: trust\u3001reject\u3001md5\u3001password\u3001gss\u3001sspi\u3001krb5\u3001ident\u3001ldap\u3001radius\u3001cert\u3001pam\uff0c\u5e38\u7528\u7684\u6709ident\uff0cmd5\uff0cpassword\uff0ctrust\uff0creject<\/p>\n
    1.6 IP-ADDRESS \uff0f IP-MASK\u00a0<\/strong><\/p>\n
    \u548c1.4 CIDR-ADDRESS\u4e00\u6837\uff0c\u53ea\u662f\u4e0d\u540c\u7684\u5199\u6cd5.
    \n<\/strong><\/p>\n
    \u4e8c\u3001\u8ba4\u8bc1\u65b9\u5f0f<\/h1>\n
    2.1 ident<\/strong><\/p>\n
    ident\u662fLinux\u4e0bPostgreSQL\u9ed8\u8ba4\u7684local\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u51e1\u662f\u80fd\u6b63\u786e\u767b\u5f55\u670d\u52a1\u5668\u7684\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\uff08\u6ce8\uff1a\u4e0d\u662f\u6570\u636e\u5e93\u7528\u6237\uff09\u5c31\u80fd\u4f7f\u7528\u672c\u7528\u6237\u6620\u5c04\u7684\u6570\u636e\u5e93\u7528\u6237\u4e0d\u9700\u5bc6\u7801\u767b\u5f55\u6570\u636e\u5e93\u3002\u7528\u6237\u6620\u5c04\u6587\u4ef6\u4e3apg_ident.conf\uff0c\u8fd9\u4e2a\u6587\u4ef6\u8bb0\u5f55\u7740\u4e0e\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\u5339\u914d\u7684\u6570\u636e\u5e93\u7528\u6237\uff0c\u5982\u679c\u67d0\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\u5728\u672c\u6587\u4ef6\u4e2d\u6ca1\u6709\u6620\u5c04\u7528\u6237\uff0c\u5219\u9ed8\u8ba4\u7684\u6620\u5c04\u6570\u636e\u5e93\u7528\u6237\u4e0e\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\u540c\u540d\u3002\u6bd4\u5982\uff0c\u670d\u52a1\u5668\u4e0a\u6709\u540d\u4e3auser1\u7684\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\uff0c\u540c\u65f6\u6570\u636e\u5e93\u4e0a\u4e5f\u6709\u540c\u540d\u7684\u6570\u636e\u5e93\u7528\u6237\uff0cuser1\u767b\u5f55\u64cd\u4f5c\u7cfb\u7edf\u540e\u53ef\u4ee5\u76f4\u63a5\u8f93\u5165psql\uff0c\u4ee5user1\u6570\u636e\u5e93\u7528\u6237\u8eab\u4efd\u767b\u5f55\u6570\u636e\u5e93\u4e14\u4e0d\u9700\u5bc6\u7801\u3002\u5f88\u591a\u521d\u5b66\u8005\u90fd\u4f1a\u9047\u5230psql -U username\u767b\u5f55\u6570\u636e\u5e93\u5374\u51fa\u73b0\u201cusername ident \u8ba4\u8bc1\u5931\u8d25\u201d\u7684\u9519\u8bef\uff0c\u660e\u660e\u6570\u636e\u5e93\u7528\u6237\u5df2\u7ecfcreateuser\u3002\u539f\u56e0\u5c31\u5728\u4e8e\u6b64\uff0c\u4f7f\u7528\u4e86ident\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u5374\u6ca1\u6709\u540c\u540d\u7684\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\u6216\u6ca1\u6709\u76f8\u5e94\u7684\u6620\u5c04\u7528\u6237\u3002\u89e3\u51b3\u65b9\u6848\uff1a1\u3001\u5728pg_ident.conf\u4e2d\u6dfb\u52a0\u6620\u5c04\u7528\u6237\uff1b2\u3001\u6539\u53d8\u8ba4\u8bc1\u65b9\u5f0f<\/p>\n
    2.2 md5<\/strong><\/p>\n
    \u662f\u5e38\u7528\u7684\u5bc6\u7801\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u5982\u679c\u4f60\u4e0d\u4f7f\u7528ident\uff0c\u6700\u597d\u4f7f\u7528md5\u3002\u5bc6\u7801\u662f\u4ee5md5\u5f62\u5f0f\u4f20\u9001\u7ed9\u6570\u636e\u5e93\uff0c\u8f83\u5b89\u5168\uff0c\u4e14\u4e0d\u9700\u5efa\u7acb\u540c\u540d\u7684\u64cd\u4f5c\u7cfb\u7edf\u7528\u6237\u3002<\/p>\n
    2.3 password<\/strong><\/p>\n
    \u662f\u4ee5\u660e\u6587\u5bc6\u7801\u4f20\u9001\u7ed9\u6570\u636e\u5e93\uff0c\u5efa\u8bae\u4e0d\u8981\u5728\u751f\u4ea7\u73af\u5883\u4e2d\u4f7f\u7528\u3002<\/p>\n
    2.4 trust<\/strong><\/p>\n
    \u53ea\u8981\u77e5\u9053\u6570\u636e\u5e93\u7528\u6237\u540d\u5c31\u4e0d\u9700\u8981\u5bc6\u7801\u6216ident\u5c31\u80fd\u767b\u5f55\uff0c\u5efa\u8bae\u4e0d\u8981\u5728\u751f\u4ea7\u73af\u5883\u4e2d\u4f7f\u7528\u3002<\/p>\n
    2.5 reject<\/strong><\/p>\n
    \u62d2\u7edd\u8ba4\u8bc1\u3002<\/p>\n
    \u4e09\u3001\u793a\u4f8b<\/h1>\n
    # \u5141\u8bb8\u672c\u5730\u7cfb\u7edf\u4e0a\u7684\u6240\u6709\u7528\u6237\uff0c\u901a\u8fc7 Unix \u5957\u63a5\u5b57\uff0c\u8fde\u63a5\u6240\u6709\u6570\u636e\u5e93\u3002\r\n#\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nlocal\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 trust\r\n\r\n# \u5141\u8bb8\u672c\u5730\u7cfb\u7edf\u4e0a\u7684\u6240\u6709\u7528\u6237\uff0c\u4f46\u662f\u4f7f\u7528\u672c\u5730\u73af\u56de TCP\/IP \uff0c\u8fde\u63a5\u6240\u6709\u6570\u636e\u5e93\u3002\r\n#\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 127.0.0.1\/32\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 trust\r\n\r\n# \u540c\u4e0a\u4e00\u4e2a\u4f8b\u5b50\uff0c\u4f46\u662f\u4f7f\u7528\u4e86\u4e00\u4e2a\u72ec\u7acb\u7684\u63a9\u7801\u5217\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 IP-ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0 IP-MASK\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 127.0.0.1\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 255.255.255.255\u00a0\u00a0\u00a0\u00a0 trust\r\n\r\n# \u540c\u4e0a\u4e00\u4e2a\u4f8b\u5b50\uff0cIPv6 \u4e0a\u76f8\u540c\u7684\u89c4\u5219\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ::1\/128\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 trust\r\n\r\n# \u540c\u4e0a\u4e00\u4e2a\u4f8b\u5b50\uff0c\u4f7f\u7528\u4e3b\u673a\u540d\u7684\u76f8\u540c\u89c4\u5219\uff08\u901a\u5e38\u540c\u65f6\u8986\u76d6 IPv4 \u548c IPv6\uff09\u3002\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 localhost\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 trust\r\n\r\n# \u5141\u8bb8\u6765\u81ea\u4efb\u610f192.168.80.x \u7684\u4e3b\u673a\u7684\u4efb\u4f55\u7528\u6237\uff0c\u4f7f\u7528\u4e0e\u6570\u636e\u5e93\u540c\u540d\u7684\u7528\u6237\uff0c\u8fde\u63a5postgres\u6570\u636e\u5e93\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 postgres\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.80.0\/24\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ident\r\n\r\n#\u5141\u8bb8\u6765\u81ea\u4efb\u610f192.168.80.x \u7684\u4e3b\u673a\u7684\u4efb\u4f55\u7528\u6237\uff0c\u4f7f\u7528\u5bc6\u7801\uff0c\u8fde\u63a5postgres\u6570\u636e\u5e93\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 postgres\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.80.0\/32\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n\r\n#\u5141\u8bb8\u6765\u81ea\u4efb\u610f.example.com \u7684\u4e3b\u673a\u7684\u4efb\u4f55\u7528\u6237\uff0c\u4f7f\u7528\u5bc6\u7801\uff0c\u8fde\u63a5postgres\u6570\u636e\u5e93\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 .example.com\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n\r\n\r\n#\u7981\u6b62\u9664\u6765\u81ea\u4efb\u610f192.168.80.x \u7684\u4e3b\u673a\u7684\u4efb\u4f55\u7528\u6237\uff0c\u8fde\u63a5\u6240\u6709\u7684\u6570\u636e\u5e93\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.80.0\/32\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 reject\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 0.0.0.0\/0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 gss\r\n\r\n#\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.0.0\/16\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ident map=omicron\r\n\r\n\r\n# \u5141\u8bb8\u672c\u5730\u6240\u6709\u7684\u7528\u6237\u8fde\u63a5\u5230\u540c\u540d\u7684\u6570\u636e\u5e93\uff0c\u4f46$PGDATA\/admins\u6587\u4ef6\u4e2d\u7684\u7528\u6237\u3001support\u7528\u6237\u9664\u5916,\r\n# \u5b83\u4eec\u53ef\u4ee5\u8fde\u63a5\u6240\u6709\u6570\u636e\u5e93,\u4ee5\u4e0a\u90fd\u9700\u8981\u5bc6\u7801\u8ba4\u8bc1\r\n# TYPE\u00a0 DATABASE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 USER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ADDRESS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 METHOD\r\nlocal\u00a0\u00a0 sameuser\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\nlocal\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 @admins\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\nlocal\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 +support\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n\r\n# \u4e0a\u9762\u7684\u6700\u540e\u4e24\u884c\u53ef\u4ee5\u88ab\u6574\u5408\u4e3a\u4e00\u884c\uff1a\r\nlocal\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 @admins,+support\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n\r\n# \u6570\u636e\u5e93\u5217\u4e5f\u53ef\u4ee5\u7528\u5217\u8868\u548c\u6587\u4ef6\u540d\uff1a\r\nlocal\u00a0\u00a0 db1,db2,@demodbs\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5<\/pre>\n
    \u56db\u3001\u5e38\u7528\u7684\u53c2\u8003\u914d\u7f6e<\/h1>\n
    # \"local\" is for Unix domain socket connections only\r\nlocal\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n# IPv4 local connections:\r\nhost\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.80.0\/32\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\n# Allow replication connections from localhost, by a user with the\r\n# replication privilege.\r\nlocal\u00a0\u00a0 replication\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\nhost\u00a0\u00a0\u00a0 replication\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 127.0.0.1\/32\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5\r\nhost\u00a0\u00a0\u00a0 replication\u00a0\u00a0\u00a0\u00a0 all\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ::1\/128\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 md5<\/pre>\n
    Tips :01<\/strong>\r\npg_hba.conf\u4fee\u6539\u540e\uff0c\u4f7f\u7528pg_ctl reload\u91cd\u65b0\u8bfb\u53d6pg_hba.conf\u6587\u4ef6\uff0c\u5982\u679cpg_ctl\u627e\u4e0d\u5230\u6570\u636e\u5e93\uff0c\r\n\u5219\u7528-D \/...\/pgsql\/data\/\u3000\u6307\u5b9a\u6570\u636e\u5e93\u76ee\u5f55\u3002<\/pre>\n","protected":false},"excerpt":{"rendered":"
    \u8ba4\u8bc1\u662f\u6570\u636e\u5e93\u670d\u52a1\u5668\u5bf9\u5ba2\u6237\u7aef\u7528\u6237\u8eab\u4efd\u9274\u522b\u7684\u8fc7\u7a0b\uff0c\u5e76\u4e14\u786e\u5b9a\u5ba2\u6237\u7aef\u4ee5\u8be5\u7528\u6237\u662f\u5426\u53ef\u4ee5\u8fde\u63a5\u6570\u636e\u5e93\u670d\u52a1\u5668\u3002PostgreSQL\u63d0\u4f9b\u591a\u79cd\u4e0d\u540c\u7684\u5ba2\u6237\u7aef\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u800cpg_hba.conf\u5c31\u662f\u5ba2\u6237\u7aef\u8ba4\u8bc1\u7684\u914d\u7f6e\u6587\u4ef6\uff0cpg_hba\u5373PostGreSQL host-base authentication\u7684\u7b80\u79f0\u3002 \u4e00\u3001\u8bed\u6cd5\u683c\u5f0f TYPE\u00a0 DATABASE\u00a0 USER\u00a0 CIDR-ADDRESS\u00a0 METHOD local\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 auth-method\u00a0 [auth-options] host\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options] hostssl\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options] hostnossl\u00a0 database\u00a0 user\u00a0 address\u00a0 auth-method\u00a0 [auth-options] host\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options] hostssl\u00a0\u00a0\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options] hostnossl\u00a0 database\u00a0 user\u00a0 IP-address\u00a0 IP-mask\u00a0 auth-method\u00a0 [auth-options] 1.1\u00a0TYPE local\uff1a\u4f7f\u7528\u672c\u5730unix\u5957\u63a5\u5b57\u3002 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[],"class_list":["post-15429","post","type-post","status-publish","format-standard","hentry","category-16"],"_links":{"self":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts\/15429","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/comments?post=15429"}],"version-history":[{"count":1,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts\/15429\/revisions"}],"predecessor-version":[{"id":15430,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts\/15429\/revisions\/15430"}],"wp:attachment":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/media?parent=15429"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/categories?post=15429"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/tags?post=15429"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}