Re: [HACKERS] SCRAM authentication, take three

Поиск
Список
Период
Сортировка
От Robert Haas
Тема Re: [HACKERS] SCRAM authentication, take three
Дата
Msg-id CA+Tgmoa3krDpm8AihBi69A7Ju0Nt_JBdej9n4sC3J6MoG63w-g@mail.gmail.com
обсуждение исходный текст
Ответ на Re: [HACKERS] SCRAM authentication, take three  (Heikki Linnakangas <hlinnaka@iki.fi>)
Ответы Re: [HACKERS] SCRAM authentication, take three
Список pgsql-hackers
Дерево обсуждения 
On Fri, Apr 7, 2017 at 3:59 AM, Heikki Linnakangas <hlinnaka@iki.fi> wrote:
> I think the "SCRAM" part is more important than "SHA-256", so -1 on that.

I agree.  The point here isn't that we're using a better hashing
method, even if a lot of people *think* that's the point.  The point
is we're using a modern algorithm that has nice properties like "you
can't impersonate the client by steeling the verifier, or even by
snooping the exchange".

But "sasl" might be even better.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Jeff Janes
Дата:
Сообщение: [HACKERS] pgbench --progress-timestamp no longer works correctly
Следующее
От: Andrew Dunstan
Дата:
Сообщение: Re: [HACKERS] recent deadlock regression test failures