Home > mailing lists

Re: BUG #8628: md5 security hole - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #8628: md5 security hole
Date	November 26, 2013 19:52:55
Msg-id	8882.1385484609@sss.pgh.pa.us Whole thread Raw
In response to	BUG #8628: md5 security hole (rob@northleaf.com)
List	pgsql-bugs

Tree view

rob@northleaf.com writes:
> I am able to login without a password when the password field is null.

Works as expected for me.  Typically, when people complain that password
auth is unexpectedly letting them in, it's because the server isn't
actually using the pg_hba.conf setting they think it is (don't forget to
SIGHUP or restart the postmaster after editing that file), or they have
a ~/.pgpass file that's supplying the password for them.

            regards, tom lane

pgsql-bugs by date:

From: bricklen
Date: 26 November 2013, 19:52:10
Subject: Re: BUG #8629: Strange resultset when using CTE or a subselect

From: Tom Lane
Date: 26 November 2013, 20:24:15
Subject: Re: BUG #8629: Strange resultset when using CTE or a subselect

Re: BUG #8628: md5 security hole - Mailing list pgsql-bugs

Previous

Next