Re: Re: Encrypting pg_shadow passwords
| От | Jim Mercer |
|---|---|
| Тема | Re: Re: Encrypting pg_shadow passwords |
| Дата | |
| Msg-id | 20010626144912.E14179@reptiles.org обсуждение исходный текст |
| Ответ на | Re: Encrypting pg_shadow passwords (Bruce Momjian <pgman@candle.pha.pa.us>) |
| Список | pgsql-hackers |
On Tue, Jun 26, 2001 at 11:03:38AM -0400, Bruce Momjian wrote: > > the fix is for the authentication behaviour, not the adminitrative interface > > (ie. ALTER USER). > > But the fix disables crypt authentication, at least until we do double > encryption. only if the dbadmin decides to store crypt'd passwords in pg_shadow. the code only alters the behaviour of the way the client and server passwords are compared, if, and only if, the auth type is "password pg_shadow". the current code does not allow a method for the client to pass clear-text password, and have it compared to an encrypted pg_shadow. i consider this broken (especially given the intention of using "password /some/file"). -- [ Jim Mercer jim@reptiles.org +1 416 410-5633 ] [ Now with more and longer words for your reading enjoyment. ]
В списке pgsql-hackers по дате отправления: