Home > mailing lists

Re: [ADMIN] Passwords in clear text in server log - Mailing list pgsql-admin

From	Stephen Frost
Subject	Re: [ADMIN] Passwords in clear text in server log
Date	October 11, 2017 21:47:49
Msg-id	20171011154748.GM4628@tamriel.snowman.net Whole thread Raw
In response to	Re: [ADMIN] Passwords in clear text in server log (Scott Marlowe <scott.marlowe@gmail.com>)
List	pgsql-admin

Tree view

Scott, Don, all,

* Scott Marlowe (scott.marlowe@gmail.com) wrote:
> FYI our standard hack here is to run
>
> set log_statement='none';
> alter user ...

That's pretty terrible, frankly.

> I do agree it would be nice to have postgres stamp out the password
> field with *** when logging though

The right approach is to use SCRAM and the exported libpq functions for
generating a proper verifier that is then passed to ALTER USER, just
like \password does in psql.

Of course, SCRAM is only in v10.  The old md5 method has other issues
beyond this.  Better than all of the above is to use either Kerberos or
client-side certificates.

Thanks!

Stephen

pgsql-admin by date:

From: Don Seiler
Date: 11 October 2017, 21:37:59
Subject: Re: [ADMIN] Passwords in clear text in server log

From: Don Seiler
Date: 11 October 2017, 22:11:03
Subject: Re: [ADMIN] Passwords in clear text in server log

Re: [ADMIN] Passwords in clear text in server log - Mailing list pgsql-admin

Previous

Next