Home > mailing lists

Re: Rejecting weak passwords - Mailing list pgsql-hackers

From	Gurjeet Singh
Subject	Re: Rejecting weak passwords
Date	September 29, 2009 13:08:11
Msg-id	65937bea0909290607t6e6949f8y532d94a68e2ca6ce@mail.gmail.com Whole thread Raw
In response to	Re: Rejecting weak passwords (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: Rejecting weak passwords
List	pgsql-hackers

Tree view

On Tue, Sep 29, 2009 at 4:49 AM, Tom Lane <tgl@sss.pgh.pa.us> wrote:

Josh Berkus <josh@agliodbs.com> writes:
> Hmmm, that would be a useful, easy (I think) security feature: add a GUC
> for failed_logins_allowed.

And the counts would be tracked and enforced where?

Combining this with other suggestion:

.) Provide a GUC failed_logins_allowed
.) Add MAX FAILED LOGINS option to ADD/ALTER USER, which defaults to the GUC if not provided in the command.
.) Track per-user failed attempt counts in shared catalog, and reset on a successful login.

Best regards,

--
Lets call it Postgres

EnterpriseDB http://www.enterprisedb.com

gurjeet[.singh]@EnterpriseDB.com

singh.gurjeet@{ gmail | hotmail | indiatimes | yahoo }.com
Twitter: singh_gurjeet
Skype: singh_gurjeet

Mail sent from my BlackLaptop device

pgsql-hackers by date:

From: Magnus Hagander
Date: 29 September 2009, 12:45:59
Subject: Re: Small patch for README

From: Robert Haas
Date: 29 September 2009, 13:40:52
Subject: Re: [PATCH] DefaultACLs

Re: Rejecting weak passwords - Mailing list pgsql-hackers

Previous

Next