Home > mailing lists

Re: Open 7.3 items - Mailing list pgsql-hackers

From	Marc G. Fournier
Subject	Re: Open 7.3 items
Date	August 1, 2002 00:50:36
Msg-id	20020731225017.Q83339-100000@mail1.hub.org Whole thread Raw
In response to	Re: Open 7.3 items (Bruce Momjian <pgman@candle.pha.pa.us>)
Responses	Re: Open 7.3 items (Bruce Momjian <pgman@candle.pha.pa.us>)
List	pgsql-hackers

Tree view

On Wed, 31 Jul 2002, Bruce Momjian wrote:

> Ron Snyder wrote:
> > >
> > > Yes, is that your pg_hba.conf line?  'password' is insecure over
> > > networks you don't trust.
> >
> > Yes, we're using 'password password' in our pg_hba.conf file.  I trust my
> > network (so far).
>
> That is another major limitation to secondary password files.  In fact,
> md5 will not even work because we assume the username is used as the
> salt for the md5 encryption.  We don't store the salt as part of the
> encrypted password like crypt does.
>
> This was another reason secondary password files were discouraged.

discouraged??  where? :)

pgsql-hackers by date:

From: "Marc G. Fournier"
Date: 01 August 2002, 00:48:59
Subject: Re: Open 7.3 items

From: "Christopher Kings-Lynne"
Date: 01 August 2002, 01:05:53
Subject: Re: Trimming the Fat, Part Deux ...

Re: Open 7.3 items - Mailing list pgsql-hackers

Previous

Next