Re: Redact user password on pg_stat_statements

Поиск
Список
Период
Сортировка
От Greg Sabino Mullane
Тема Re: Redact user password on pg_stat_statements
Дата
Msg-id CAKAnmmLKZsjQFekJs==NiJLrsN-K7f+L9A1Bkrn=W4HE4OyYOg@mail.gmail.com
обсуждение исходный текст
Ответ на Redact user password on pg_stat_statements  (Matheus Alcantara <matheusssilv97@gmail.com>)
Ответы Re: Redact user password on pg_stat_statements
Список pgsql-hackers
Дерево обсуждения
The idea and the patch looks good to me at first glance, +1.

I'm wondering what else we can do to discourage this pattern, however.  There are more secure ways to set/change a password, but we keep seeing plain text pop up in various contexts. Maybe a strong warning+hint when someone uses these commands? A future GUC to disable it by default?

Cheers,
Greg

--
Crunchy Data - https://www.crunchydata.com
Enterprise Postgres Software Products & Tech Support

В списке pgsql-hackers по дате отправления: