Home > mailing lists

Re: How passwords can be crypted in postgres? - Mailing list pgsql-general

From	Gordan Bobic
Subject	Re: How passwords can be crypted in postgres?
Date	January 2, 2001 08:12:18
Msg-id	005a01c074a3$8bd5a6a0$8000000a@localdomain Whole thread Raw
In response to	Re: How passwords can be crypted in postgres? (The Hermit Hacker <scrappy@hub.org>)
List	pgsql-general

Tree view

> I usually just run 'crypt()' on the clear text before storing it to the
> backend ...

Isn't this just as bad? If you store the encrypted password, that doesn't
help you in the slightest in this case, because if you can breach the list
of encrypted passwords, you still know what you need to send as the
"password" from the front end to let you into the database.

Unless I am missing something here, doing this doesn't make any
difference... Not for someone serious about breaching security, anyway...

Regards.

Gordan

pgsql-general by date:

From: "Gordan Bobic"
Date: 02 January 2001, 08:09:14
Subject: Re: SV: MySQL and PostgreSQL speed compare

From: "Gordan Bobic"
Date: 02 January 2001, 08:28:22
Subject: Re: SV: MySQL and PostgreSQL speed compare

Re: How passwords can be crypted in postgres? - Mailing list pgsql-general

Previous

Next