Home > mailing lists

Re: [HACKERS] SCRAM authentication, take three - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: [HACKERS] SCRAM authentication, take three
Date	February 19, 2017 17:44:03
Msg-id	CAB7nPqQ1eZ4Acryz_kDVLT8AnpQ+vyhV_AJzz4Q818SVsVS=2g@mail.gmail.com Whole thread Raw
In response to	Re: [HACKERS] SCRAM authentication, take three (Robert Haas <robertmhaas@gmail.com>)
List	pgsql-hackers

Tree view

On Sun, Feb 19, 2017 at 6:55 PM, Robert Haas <robertmhaas@gmail.com> wrote:
> Gosh, this SCRAM stuff seems to be taking us pretty deeply into
> dealing with encoding details which apparently we haven't formerly
> needed to worry about.  That is a little surprising and maybe
> something we should try to avoid?

The RFC of SCRAM, RFC5802 is clear on the matter
(https://tools.ietf.org/html/rfc5802), SASLprep needs NFKC (RFC4013
here, the worst in the set https://tools.ietf.org/html/rfc4013) if we
want our implementation to be compatible with any other Postgres
driver that implement things at protocol level without libpq. I think
that JDBC is one of those things. So I am afraid we cannot avoid it if
we want SCRAM.
-- 
Michael

pgsql-hackers by date:

From: Robert Haas
Date: 19 February 2017, 17:27:53
Subject: Re: [HACKERS] Index corruption with CREATE INDEX CONCURRENTLY

From: Petr Jelinek
Date: 19 February 2017, 18:03:07
Subject: Re: [HACKERS] Provide list of subscriptions and publications inpsql's completion

Re: [HACKERS] SCRAM authentication, take three - Mailing list pgsql-hackers

Previous

Next