Home > mailing lists

Re: [HACKERS] Solution to the pg_user passwd problem !?? (c) - Mailing list pgsql-hackers

From	Bruce Momjian
Subject	Re: [HACKERS] Solution to the pg_user passwd problem !?? (c)
Date	February 19, 1998 16:22:02
Msg-id	199802191816.NAA10309@candle.pha.pa.us Whole thread Raw
In response to	Re: [HACKERS] Solution to the pg_user passwd problem !?? (c) (Brett McCormick <brett@work.chicken.org>)
Responses	Re: [HACKERS] Solution to the pg_user passwd problem !?? (c) (The Hermit Hacker <scrappy@hub.org>)
List	pgsql-hackers

Tree view

>
>
> Have we considering using the unix crypt function for passwords?  That
> way it wouldn't matter (as much) if people saw the password, and would
> still be (somewhat less) secure.
>
> On Thu, 19 February 1998, at 15:55:07, Jan Wieck wrote:

I don't know what the problem with using crypt was.  It may be because
he passes a random salt to the user, and the user makes the password
packet with the given salt and returns it to the backend.  If we use
crypt, we have to send a plaintext password over the network, don't we?

--
Bruce Momjian
maillist@candle.pha.pa.us

pgsql-hackers by date:

From: Bruce Momjian
Date: 19 February 1998, 16:21:02
Subject: Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c)

From: ocie@paracel.com
Date: 19 February 1998, 16:22:04
Subject: Re: [HACKERS] Subselects and NOTs

Re: [HACKERS] Solution to the pg_user passwd problem !?? (c) - Mailing list pgsql-hackers

Previous

Next