From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-147274-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 409791381F3
	for <garchives@archives.gentoo.org>; Sat, 27 Apr 2013 00:28:07 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 1B2EFE0D0B;
	Sat, 27 Apr 2013 00:27:57 +0000 (UTC)
Received: from eagle.jhcloos.com (unknown [207.210.242.212])
	(using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id E50DDE0CD3
	for <gentoo-user@lists.gentoo.org>; Sat, 27 Apr 2013 00:27:55 +0000 (UTC)
Received: by eagle.jhcloos.com (Postfix, from userid 10)
	id 4A69D40523; Sat, 27 Apr 2013 00:27:29 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jhcloos.com;
	s=eagle; t=1367022474;
	bh=qoU8BbMYTyGOjBuNkMkZm1bVaV07Rfj29GMvgNCCQm4=;
	h=From:To:Cc:Subject:In-Reply-To:References:Date:Message-ID:
	 MIME-Version:Content-Type;
	b=k7g13d4w5bLBryKXvWVl4UErx2I0d37l/xbtCdtIt2odRp9lasfdSS/L4VyzoQvjM
	 i1zjwK8nfvDcaj0c4ZMD9gkFwRX67Nh/lJ8b/DY6iGg64TGuHO2vnOE92hTobNOGIg
	 YmdrkvN6WL3gTngv8Jc4hNHhJPsaDFDrmScfD3+4=
Received: by carbon.jhcloos.org (Postfix, from userid 500)
	id 4F600DF394; Sat, 27 Apr 2013 00:25:40 +0000 (UTC)
From: James Cloos <cloos@jhcloos.com>
To: Joseph <syscon780@gmail.com>
Cc: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] PosgreSQL -  pg_hba.conf localhost access only
In-Reply-To: <20130423001731.GB5934@syscon7.inet> (Joseph's message of "Mon,
	22 Apr 2013 18:17:31 -0600")
References: <20130423001731.GB5934@syscon7.inet>
User-Agent: Gnus/5.130006 (Ma Gnus v0.6) Emacs/24.3.50 (gnu/linux)
Face: iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAgMAAABinRfyAAAACVBMVEX///8ZGXBQKKnCrDQ3
 AAAAJElEQVQImWNgQAAXzwQg4SKASgAlXIEEiwsSIYBEcLaAtMEAADJnB+kKcKioAAAAAElFTkSu
 QmCC
Copyright: Copyright 2013 James Cloos
OpenPGP: ED7DAEA6; url=http://jhcloos.com/public_key/0xED7DAEA6.asc
OpenPGP-Fingerprint: E9E9 F828 61A4 6EA9 0F2B  63E7 997A 9F17 ED7D AEA6
Date: Fri, 26 Apr 2013 20:25:40 -0400
Message-ID: <m3txmsbyzm.fsf@carbon.jhcloos.org>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain
X-Hashcash: 1:28:130427:syscon780@gmail.com::+NJ5+cI+MyP5iPUO:00000000000000000000000000000000000000000H0eqc
X-Hashcash: 1:28:130427:gentoo-user@lists.gentoo.org::HZaPYXkGfsvd+1LB:00000000000000000000000000000000MfELu
X-Archives-Salt: 2f6966a4-6dcf-452c-93ec-8e71defc795e
X-Archives-Hash: ea39a97fe4b750a407fcfe7b3beb4c6b

>>>>> "J" == Joseph  <syscon780@gmail.com> writes:

J> In my "pg_hba.conf" I have:

J> local	all             all             		        trust
J> host    all             all             127.0.0.1/32            trust

J> I was under impression that this is configuration is for localhost "127.0.0.1" access only.

That tells pg how to authenticate users using the unix domain socket and
users using tcp over the loopback interface.

To limit the listen_address, edit postgresql.conf in that directory.

You want to have:

  listen_addresses = 'localhost'

or:

  listen_addresses = '127.0.0.1'

to prevent any access attempts from any non-localhost ip addresses.

-JimC
-- 
James Cloos <cloos@jhcloos.com>         OpenPGP: 1024D/ED7DAEA6