So, we're going to go with less security then is available on most Unix
OSs?
if we are going to do this, *please* just use the regular system
crypt() function ... for those that are using MD5 for their passwords, at
least as it is under FreeBSD, crypt() does either MD5 or DES depending on
the system ...
On Sat, 6 May 2000, Bruce Momjian wrote:
> >
> > So we're in agreement on using MD5. Sverre, is the offer still open
> > for the java MD5 you wrote? I'll translate it to C and make sure it
> > will compile/run/give-correct-results on as many platforms as possible
> > including DOS/Windows, hpux, FreeBSD and IRIX.
>
> Yes, MD5, double-crypt with pg_shadow salt and random salt. Sounds like
> a winner all around.
>
> And finally, we need a trigger to somehow update non-md5 strings in the
> pg_shadow password field. No one is sure how to do that yet.
>
> --
> Bruce Momjian | http://www.op.net/~candle
> pgman@candle.pha.pa.us | (610) 853-3000
> + If your life is a hard drive, | 830 Blythe Avenue
> + Christ can be your backup. | Drexel Hill, Pennsylvania 19026
>
Marc G. Fournier ICQ#7615664 IRC Nick: Scrappy
Systems Administrator @ hub.org
primary: scrappy@hub.org secondary: scrappy@{freebsd|postgresql}.org