Home > mailing lists

Re: Roles with passwords; SET ROLE ... WITH PASSWORD ? - Mailing list pgsql-general

From	Tom Lane
Subject	Re: Roles with passwords; SET ROLE ... WITH PASSWORD ?
Date	December 2, 2009 15:47:12
Msg-id	14801.1259772420@sss.pgh.pa.us Whole thread Raw
In response to	Re: Roles with passwords; SET ROLE ... WITH PASSWORD ? (Craig Ringer <craig@postnewspapers.com.au>)
List	pgsql-general

Tree view

Craig Ringer <craig@postnewspapers.com.au> writes:
> On 2/12/2009 11:04 PM, Tom Lane wrote:
>> Seems like it would have all the standard problems with cleartext
>> passwords being exposed in pg_stat_activity, system logs, etc.

> Yeah, I was a bit concerned about that, but it can be worked around with
> careful use of parameterised queries (depending, admittedly, on client
> library/driver).

No, not really, because we don't support parameters in utility commands.
Even if we did, parameter values get logged, so the leak to the
postmaster log is still there.

            regards, tom lane

pgsql-general by date:

From: Tom Lane
Date: 02 December 2009, 15:42:45
Subject: Re: Undefined subroutine &main::spi_prepare

From: Israel Brewster
Date: 02 December 2009, 16:12:15
Subject: Re: Build universal binary on Mac OS X 10.6?

Re: Roles with passwords; SET ROLE ... WITH PASSWORD ? - Mailing list pgsql-general

Previous

Next