Home > mailing lists

Defaulting to password_encryption = scram-sha-256 - Mailing list pgsql-hackers

From	Andres Freund
Subject	Defaulting to password_encryption = scram-sha-256
Date	October 7, 2018 12:43:06
Msg-id	20181007064306.i6ensyhb4uhuyfbe@alap3.anarazel.de Whole thread Raw
Responses	Re: Defaulting to password_encryption = scram-sha-256 (Michael Paquier <michael@paquier.xyz>)
List	pgsql-hackers

Tree view

Hi,

Now that we probably have shaken the worst issues out of scram,
shouldn't we change the default password_encryption to something that
doesn't scare people?   The only reason I could think of not wanting to
do that for is that we don't necessarily guarantee that we have a strong
random generator, but if that's the issue, we should change initdb to
default it to something safe if the platform provides something. Which
is just about any sane one, no?

Greetings,

Andres Freund

pgsql-hackers by date:

From: Tom Lane
Date: 07 October 2018, 12:11:59
Subject: Re: now() vs transaction_timestamp()

From: Michael Paquier
Date: 07 October 2018, 13:59:56
Subject: Re: pg_upgrade failed with ERROR: null relpartbound for relation18159 error.

Defaulting to password_encryption = scram-sha-256 - Mailing list pgsql-hackers

Previous

Next