Hello,
I don't know if the C# postgresql provider can do this, but you can use PostgreSQL with SSL + MD5 which would be fairly secure.
Another option would be to have them authenticate via a web application that would open a tunnel specifically for that user per IP.
Sincerely,
Joshua D. Drake
Paul Tillotson wrote:
At my company we are looking at deploying clients for our client/server app outside our firewall, which will then require our postgres box to be internet-accessible.
Does anyone out there have experience with this or recommended best practices? We have been looking at either (a) tunnelling everything over ssh, or (b) just making sure that users have "strong" passwords and requiring "md5" authentication in pg_hba.conf.
Our client app is in C# using the postgresql .net data provider.
Regards, Paul Tillotson
---------------------------(end of broadcast)--------------------------- TIP 6: Have you searched our list archives?
http://archives.postgresql.org
-- Command Prompt, Inc., home of Mammoth PostgreSQL - S/ODBC and S/JDBC Postgresql support, programming shared hosting and dedicated hosting. +1-503-667-4564 - [EMAIL PROTECTED] - http://www.commandprompt.com PostgreSQL Replicator -- production quality replication for PostgreSQL
---------------------------(end of broadcast)--------------------------- TIP 7: don't forget to increase your free space map settings
