Re: Password Security Standarts on PostgreSQL

MURAT KOÇ wrote:
> In Oracle, it could be created a user profile called "PROFILE" and this profile could have below
> specifications:
> 
> PASSWORD_LIFE_TIME     (that describes when password will expire)
> FAILED_LOGIN_ATTEMPTS (specifies number of failed login attempts before locking user account)
> PASSWORD_LOCK_TIME   (specified time after user account is locked because of failed login attempts
> exceeded)
> PASSWORD_VERIFY_FUNCTION  (this allows setting a strong password verify function - min characters,
> password complexity)
> 
> Has PostgreSQL got any capability like this except LDAP, kerberos or PAM authentication ?

There's the "passwordcheck" contrib:
http://www.postgresql.org/docs/current/static/passwordcheck.html
It does the same thing as Oracle's PASSWORD_VERIFY_FUNCTION.
You can write your own password checking function.
This way you can also force a certain password expiry date
(PostgreSQL does not have a password life time).

Yours,
Laurenz Albe