Document that Kerberos is for authentication, and does not encrypt data

author Bruce Momjian <bruce@momjian.us>

Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)

committer Bruce Momjian <bruce@momjian.us>

Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)
author Bruce Momjian <bruce@momjian.us>
Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)
committer Bruce Momjian <bruce@momjian.us>
Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)
diff --git a/doc/src/sgml/client-auth.sgml b/doc/src/sgml/client-auth.sgml

index f418332a395f2e69fe64380c003a6b5ba8fb7873..4b7c2c4709343bebe60651ddbd4898d57ad35c85 100644 (file)
--- a/doc/src/sgml/client-auth.sgml
+++ b/doc/src/sgml/client-auth.sgml
@@ -1,4 +1,4 @@
-<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.95 2006/11/17 23:25:17 tgl Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.96 2006/11/23 05:39:17 momjian Exp $ -->
  
  <chapter id="client-authentication">
   <title>Client Authentication</title>
@@ -653,6 +653,9 @@ local   db1,db2,@demodbs  all                         md5
      <ulink url="http://web.mit.edu/kerberos/www/">MIT Kerberos page</ulink>
      can be good starting points for exploration.
      Several sources for <productname>Kerberos</> distributions exist.
+    <productname>Kerberos</productname> provides secure authentication but
+    does not encrypt queries or data passed over the network;  for that
+    use <acronym>SSL</acronym>.
     </para>
  
     <para>
author	Bruce Momjian <bruce@momjian.us>
	Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)
committer	Bruce Momjian <bruce@momjian.us>
	Thu, 23 Nov 2006 05:39:17 +0000 (05:39 +0000)