Re: brute force attacking the password

Bruce Momjian schreef:

>Wim Bertels wrote:
>
>
>>LS,
>>
>>is there a way of securing the postgresql-server against brute force
>>password cracking ?
>>iow: is there a way of setting eg a maximum number of login attempts, or
>>using a time-out or ..?
>>
>>+ securing on server level
>>
>>
>
>No, there is not.  Does anyone want to suggest a possible implementation
>for the TODO list?
>
>
evident remarks:
http://www.woodmann.com/fravia/protec.htm

SHS instead of MD5?
http://www.secinf.net/firewalls_and_VPN/Firewalls_Complete/Firewalls_Complete__Cryptography_Is_it_Enough.html

..