Re: Encrypted Passwords - Mailing list pgsql-admin

From Tim Ellis
Subject Re: Encrypted Passwords
Date
Msg-id 1042488673.23675.215.camel@timetop
Whole thread Raw
In response to Re: Encrypted Passwords  ("Rob Abernethy IV" <abernethy@dynedge.com>)
List pgsql-admin
> The problem
> is that Tomcat computes the digest without a salt and, therefore,
> authentication is failing because the two digested versions of the same
> password are different.

If there is not a feature within Tomcat to allow adding the username as
a salt to the MD5 hash, then Tomcat is broken. This is so common, I
cannot imagine any product bothering to implement MD5 hashing without
allowing a fairly generic salting API call.

Thankfully, Tomcat comes with source, so it can be fixed if, indeed, it
is broken.

Do not waste any energy trying to get Postgres to not salt the hash,
you'd be using energy ruining one product instead of fixing another.

--
Tim Ellis
Senior Database Architect



pgsql-admin by date:

Previous
From: Stephan Szabo
Date:
Subject: Re: Grants on creating tables..
Next
From: Andrew Biagioni
Date:
Subject: Deadlock Checker doesn't see foreign-key locks