Home > mailing lists

Re: Is "trust" really a good default? - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: Is "trust" really a good default?
Date	July 13, 2004 08:33:02
Msg-id	200407131033.02089.peter_e@gmx.net Whole thread Raw
In response to	Re: Is "trust" really a good default? ("Magnus Hagander" <mha@sollentuna.net>)
List	pgsql-hackers

Tree view

Magnus Hagander wrote:
> This is the very reason --pwfile was added. It's not just a win32
> fix, it's a "any packager that needs to run without interactivity"
> fix. Yes, you can stick a blank password in there, but again, this is
> a choice and not a default in that case.

No, that's not what it was added for.  It was added for catering to 
packaging mechanisms that have other interfaces for interactivity.  But 
just hardcoding a default password into a package gains no security at 
all.

-- 
Peter Eisentraut
http://developer.postgresql.org/~petere/

pgsql-hackers by date:

From: "Magnus Hagander"
Date: 13 July 2004, 07:51:15
Subject: Re: Is "trust" really a good default?

From: Simon Riggs
Date: 13 July 2004, 11:05:18
Subject: Re: Anoncvs down?

Re: Is "trust" really a good default? - Mailing list pgsql-hackers

Previous

Next