Postgres Pro
Downloads
Home   >   mailing lists

Re: [ADMIN] Passwords in clear text in server log - Mailing list pgsql-admin

From Stephen Frost
Subject Re: [ADMIN] Passwords in clear text in server log
Date
Msg-id 20171011161914.GN4628@tamriel.snowman.net
Whole thread Raw
In response to Re: [ADMIN] Passwords in clear text in server log  (Don Seiler <don@seiler.us>)
Responses Re: [ADMIN] Passwords in clear text in server log  (Don Seiler <don@seiler.us>)
List pgsql-admin
Tree view 
Don,

* Don Seiler (don@seiler.us) wrote:
> Long-term I'm hoping to get our PG databases talking to our LDAP, there's a
> few internal issues and priorities that have that on the back burner for
> now.

As I understand it, you're in an Active Directory environment, where
what you really want to be using for authentication is Kerberos / GSSAPI,
not LDAP.  With LDAP, the password is still sent to the PG server in
cleartext during the authentication and that's entirely unnecessary in
an Active Directory environment where you have a Kerberos realm already
in place.

Thanks!

Stephen

pgsql-admin by date:

Previous
From: Don Seiler
Date:
Subject: Re: [ADMIN] Passwords in clear text in server log
Next
From: Don Seiler
Date:
Subject: Re: [ADMIN] Passwords in clear text in server log