Re: [HACKERS] Letting the client choose the protocol to use during aSASL exchange

Поиск
Список
Период
Сортировка
От Heikki Linnakangas
Тема Re: [HACKERS] Letting the client choose the protocol to use during aSASL exchange
Дата
Msg-id 06cd6212-0d22-d840-acae-4d5158321ed3@iki.fi
обсуждение исходный текст
Ответ на Re: [HACKERS] Letting the client choose the protocol to use during aSASL exchange  (Simon Riggs <simon@2ndquadrant.com>)
Список pgsql-hackers
Дерево обсуждения 
On 04/06/2017 11:16 PM, Simon Riggs wrote:
>> or it
>> can just ignore the list and send what it wants anyway, probably leading
>> to client disconnect.
> It would need to follow one of the requested protocols, but mark the
> request as doomed. Otherwise we'd be revealing information. That's
> what SCRAM does now.

It's not a secret today, what authentication method the server requires. 
You can't really hide it, anyway, as the client could probe with 
different lists of supported methods, and see which method the server 
picks in each case.

- Heikki

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Tatsuo Ishii
Дата:
Сообщение: Re: [HACKERS] pgbench - allow to store select results intovariables
Следующее
От: Heikki Linnakangas
Дата:
Сообщение: Re: [HACKERS] Letting the client choose the protocol to use during aSASL exchange