Getting the error `password authentication failed for user "postgres"` yet I can access the db using pgadmin?

koanf · January 1, 2023, 3:29am

Hello everyone.

I restarted the machine for my postgresql app but I’m getting the password authentication failed error but I can still access the DB externally. The following is the logs

2023-01-01T03:25:48.079 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:48.077 UTC [1384] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:48.079 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:48.077 UTC [1384] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:25:49.293 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:49.290 UTC [1390] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:49.293 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:49.290 UTC [1390] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:25:51.143 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:51.141 UTC [1394] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:51.143 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:51.141 UTC [1394] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:25:54.996 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:54.990 UTC [1421] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:54.996 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:54.990 UTC [1421] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:25:57.801 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:57.799 UTC [1440] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:57.801 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:57.799 UTC [1440] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:25:58.569 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:58.567 UTC [1445] FATAL: password authentication failed for user "postgres"
2023-01-01T03:25:58.569 app[217810xxx] sin [info] keeper | 2023-01-01 03:25:58.567 UTC [1445] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"
2023-01-01T03:26:00.680 app[217810xxx] sin [info] keeper | 2023-01-01 03:26:00.678 UTC [1457] FATAL: password authentication failed for user "postgres"
2023-01-01T03:26:00.680 app[217810xxx] sin [info] keeper | 2023-01-01 03:26:00.678 UTC [1457] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

I would like to know if this should be ignored as everything works anyways, or is this something I should fix, and how would I fix it. Thanks everyone.

crossworth · January 1, 2023, 3:10pm

Are you sure this log entry is related to your connection?
Maybe is an application with wrong credentials in a restart loop or something.

mike-cann · January 7, 2023, 3:28am

Hey, im having exactly the same thing.

This started happening once I made the DB “externally accessible” (by following this guide). I made it external using ipv4 because I was worried about compatibility if I made it ipv6.

I had something like this when my Database was hosted on Heroku too. I asked support at Heroku and they told me that its bots that are attacking it and theres nothing you can do about it.

It seems like there are bots that are continually scanning the entire ip4 address space looking for postgres instances and when they find one they just start trying to brute force the password.

Am I correct in thinking this or is there something else going on here?

jerome · January 8, 2023, 12:26am

That’s likely yes. There are bots scanning ipv4 ranges and trying all kinds of exploits and default / common passwords.

I wonder if requiring ssl would help at all. Bots tend to not bother with TLS.

mike-cann · January 8, 2023, 2:09am

I just changed the default user from “postgres” to something else so they are now getting “user not found” errors instead. Hopefully that will stop the bot from trying, will let you know.

koanf · January 12, 2023, 9:53am

This started happening once I made the DB “externally accessible”…

hey, i did the same thing! i’m marking this as a solution as this is the most likely reason why this is happening

jaeyson · October 13, 2023, 5:47am

I’m having the same problem as well. Says password authentication failed and yet I am able to connect to a db client:

2023-10-13T05:46:59.244 app[7811613f921337] lax [info] postgres | 2023-10-13 05:46:59.243 UTC [1350] FATAL: password authentication failed for user "app_staging"

2023-10-13T05:46:59.244 app[7811613f921337] lax [info] postgres | 2023-10-13 05:46:59.243 UTC [1350] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

This db instance is connected to the app (Phoenix app) where the value of DATABASE_URL is:

"postgres://app_staging:password_redacted@app-staging-db.flycast:5432/app_staging?sslmode=disable"

The way I connected to db externally is by running a 5432 proxy + wireguard + db client

jmsfbs · November 1, 2023, 2:24am

I noticed this too, I figured it was my own fault, but to test I created a fresh db, I never exposed it to the internet, and the error still happens:

 2023-11-01T02:21:03.335 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:03.334 UTC [1312] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

2023-11-01T02:21:05.295 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:05.293 UTC [1318] FATAL: password authentication failed for user "postgres"

2023-11-01T02:21:05.295 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:05.293 UTC [1318] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

2023-11-01T02:21:05.295 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:05.293 UTC [1319] FATAL: password authentication failed for user "postgres"

2023-11-01T02:21:05.295 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:05.293 UTC [1319] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

2023-11-01T02:21:08.477 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:08.476 UTC [1325] FATAL: password authentication failed for user "postgres"

2023-11-01T02:21:08.477 app[9080e391f13478] syd [info] postgres | 2023-11-01 02:21:08.476 UTC [1325] DETAIL: Connection matched pg_hba.conf line 8: "host all all ::0/0 md5"

This is the only command I ran:

fly pg create \
--image-ref flyio/postgres-flex-timescaledb:15.3 \
--name $APP_NAME \
--org $ORG_NAME \
--region syd \
--password $OPERATOR_PASSWORD

So I don’t think this is bot fly by requests, as their requests would never get past the proxy into postgres’ logs.

Topic		Replies	Views
Failing Postgres DB connection from app here and there Questions / Help	45	1855	April 26, 2023
Postgres with replicas returning "password authentication failed" in logs Questions / Help	4	222	November 25, 2023
Unable to connect to postgres database Questions / Help postgres	2	524	April 22, 2022
Problems to backup my Production Database in Postgres Questions / Help postgres , rails	4	293	April 29, 2023
My Postgres DB is having issues Questions / Help postgres	7	793	May 28, 2022

Getting the error `password authentication failed for user "postgres"` yet I can access the db using pgadmin?

Related Topics