On 1/17/18 11:14, PG Doc comments form wrote:
> The documentation at
> https://www.postgresql.org/docs/current/static/citext.html shows an example
> using md5 for password hashes. This is generally a bad practice and not
> relevant to the feature documented.
>
> I recommend removing the password column from this example or replacing the
> md5 hash with something more secure (a secure hash algorithm with a salt).
We don't have any other hash functions built in and exposed at the SQL
level. (Maybe that is a problem.) Do you have any other ideas how to
rewrite that example?
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services