Re: change password_encryption default to scram-sha-256? - Mailing list pgsql-hackers

From Alvaro Herrera
Subject Re: change password_encryption default to scram-sha-256?
Date
Msg-id 20190408200735.GA15875@alvherre.pgsql
Whole thread Raw
In response to Re: change password_encryption default to scram-sha-256?  (Dave Cramer <pg@fastcrypt.com>)
Responses Re: change password_encryption default to scram-sha-256?
List pgsql-hackers
On 2019-Apr-08, Dave Cramer wrote:

> > IIUC the vast majority of clients already support SCRAM auth.  So the
> > vast majority of PG users can take advantage of the additional security.
> > I think the only massive-adoption exception is JDBC, and apparently they
> > already have working patches for SCRAM.
> 
> We have more than patches this is already in the driver.
> 
> What do you mean by "massive-adoption exception"

I meant an exception to the common situation that SCRAM-SHA-256 is
supported and shipped in stable releases of each driver.  The wiki here
still says it's unsupported on JDBC:
https://wiki.postgresql.org/wiki/List_of_drivers
For once I'm happy to learn that the wiki is outdated :-)

-- 
Álvaro Herrera                https://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services



pgsql-hackers by date:

Previous
From: Dave Cramer
Date:
Subject: Re: change password_encryption default to scram-sha-256?
Next
From: Dave Cramer
Date:
Subject: Re: change password_encryption default to scram-sha-256?