Home > mailing lists

Re: Known but bad behavior with alter user? - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Known but bad behavior with alter user?
Date	March 24, 2006 17:13:33
Msg-id	6207.1143224009@sss.pgh.pa.us Whole thread Raw
In response to	Re: Known but bad behavior with alter user? (Stephen Frost <sfrost@snowman.net>)
Responses	Re: Known but bad behavior with alter user? (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

Stephen Frost <sfrost@snowman.net> writes:
> * Joshua D. Drake (jd@commandprompt.com) wrote:
>> template1=3D# alter user foo rename to bar;
>> NOTICE:  MD5 password cleared because of role rename

>> Now we have to reset the password.. which seems an extra
>> step that shouldn't be required.

> Wouldn't this be because the username is used as the salt for MD5 and so
> there's no way to update the password because the system doesn't know
> the original password?

Yeah.  This isn't changing unless you have an alternative that's not
worse (ie, doesn't defeat the purpose of storing an encrypted password).
        regards, tom lane

pgsql-hackers by date:

From: Stephen Frost
Date: 24 March 2006, 17:01:20
Subject: Re: Known but bad behavior with alter user?

From: Peter Eisentraut
Date: 24 March 2006, 17:27:21
Subject: Re: Role incompatibilities

Re: Known but bad behavior with alter user? - Mailing list pgsql-hackers

Previous

Next