Home > mailing lists

Re: [BUGS] BUG #14797: It's not safe to use MD5 - Mailing list pgsql-bugs

From	hubert depesz lubaczewski
Subject	Re: [BUGS] BUG #14797: It's not safe to use MD5
Date	September 5, 2017 19:17:28
Msg-id	20170905131728.GA5410@depesz.com Whole thread Raw
In response to	[BUGS] BUG #14797: It's not safe to use MD5 (dmitriy.davydov@deiteriy.com)
List	pgsql-bugs

Tree view

On Tue, Sep 05, 2017 at 12:01:06PM +0000, dmitriy.davydov@deiteriy.com wrote:
> Hello.
> Postgresql 9.6.5 , by default , database user passwords are stored as MD5
> hashes (18.8  Encryption Options.

first of all, it's not a bug, so posting it to pgsql-bugs is not
appropriate.

second of all - newer pg already has stronger hashing support:
https://www.depesz.com/2017/04/18/waiting-for-postgresql-10-support-scram-sha-256-authentication-rfc-5802-and-7677/

Best regards,

depesz



-- 
Sent via pgsql-bugs mailing list (pgsql-bugs@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-bugs

pgsql-bugs by date:

From: Michael Paquier
Date: 05 September 2017, 18:44:39
Subject: Re: [BUGS] Old row version in hot chain become visible after a freeze

From: Michael Paquier
Date: 06 September 2017, 10:02:57
Subject: Re: [BUGS] Old row version in hot chain become visible after a freeze

Re: [BUGS] BUG #14797: It's not safe to use MD5 - Mailing list pgsql-bugs

Previous

Next