Home > mailing lists

Re: Using md5 authentication - Mailing list pgsql-novice

From	ktm@rice.edu
Subject	Re: Using md5 authentication
Date	July 31, 2013 15:52:11
Msg-id	20130731125206.GY3001@aart.rice.edu Whole thread Raw
In response to	Re: Using md5 authentication (Philip Poloczek <Philip.Poloczek@dlr.de>)
Responses	really novice with Postgres ! (Jean MAURICE <mauricejea@numericable.fr>)
List	pgsql-novice

Tree view

On Wed, Jul 31, 2013 at 10:25:03AM +0200, Philip Poloczek wrote:
> It's kind of secure. These passwords are very sensitive, i don't
> even want administrators to read these passwords in plain text.
> Maybe i should use ldap.
>

Hi Philip,

Storing a hash of a password that you could use is the same as
storing the plain text password with the same security concerns.
As you suspect, using something like ldap, gssapi or a multi-
factor authentication scheme is much, much better.

Regards,
Ken

pgsql-novice by date:

From: Philip Poloczek
Date: 31 July 2013, 11:25:31
Subject: Re: Using md5 authentication

From: Jean MAURICE
Date: 01 August 2013, 16:53:37
Subject: really novice with Postgres !

Re: Using md5 authentication - Mailing list pgsql-novice

Previous

Next