Home > mailing lists

Re: Change authentication error message (patch) - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Change authentication error message (patch)
Date	January 24, 2014 06:39:53
Msg-id	28960.1390534774@sss.pgh.pa.us Whole thread Raw
In response to	Re: Change authentication error message (patch) (Bruce Momjian <bruce@momjian.us>)
Responses	Re: Change authentication error message (patch) (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

Bruce Momjian <bruce@momjian.us> writes:
> I have developed the attached patch to fix this problem.  Do I need to
> say "invalid user or invalid or expired password"?

I'm not convinced that this improves anything.  The problem might not in
fact be either of the things you mention, in which case the new message 
is outright misleading.  Also, what of the policy stated in the header
comment for the function you're hacking, ie we intentionally don't reveal
the precise cause of the failure to the client?
        regards, tom lane

pgsql-hackers by date:

From: Yugo Nagata
Date: 24 January 2014, 06:35:40
Subject: Re: Fwd: Proposal: variant of regclass

From: Amit Kapila
Date: 24 January 2014, 06:40:33
Subject: Re: [bug fix] pg_ctl always uses the same event source

Re: Change authentication error message (patch) - Mailing list pgsql-hackers

Previous

Next