Re: Add a warning message when using unencrypted passwords

Guillaume Lelarge <guillaume.lelarge@dalibo.com> writes:
> v2 is attached.

This seems pretty much entirely useless to me.  The password
has already been leaked to the log (*and* the network, if
session is unencrypted), so what's the point of a warning?
And as already noted, this ignores several other hazards of
the same sort, so it's more likely to create a false sense of
security than anything else.

(In addition to the points noted, what of event triggers?
Or ~/.psql_history?)

            regards, tom lane