Postgresql Hacked ? - FATAL: pg_hba.conf rejects connection for host "127.0.0.1", user "postgres", database "", SSL on



Two Main Reason :

One (Might Not Be Hacked) : Just change Config it will work as given in this link

https://dba.stackexchange.com/questions/83984/connect-to-postgresql-server-fatal-no-pg-hba-conf-entry-for-host




Second (Might Be Hacked)

Oney way to find that is list users and check

postgres=# \du

It will list users. If you find "pgdbadm" user good chance your PostgreSQL got hacked

One main thing they mainly do is they will add these two rules in begining of the pg_hba.conf file
Hack Code

 host all postgres 0.0.0.0/0 reject

host all pgdbadm 0.0.0.0/0 md5

For more info check the below links

https://gist.github.com/andywer/1c7aaa23e758f555b483e171c51514e7

https://dba.stackexchange.com/questions/215294/why-does-pg-hba-conf-sometimes-have-random-rules-added-to-it-postgresql

https://stackoverflow.com/questions/52197486/fatal-pg-hba-conf-rejects-connection-for-host-127-0-0-1-user-postgres-dat

Comments

Post a Comment

Popular posts from this blog

AWS RDS

Image
There is a maximum of 30 database per instance and 4 TB on each instance, so if your application depends on an architecture where you need to have 100 databases in the same instance then this is a showstopper for RDS.
Read more