Home > mailing lists

Re: Not storing MD5 hashed passwords - Mailing list pgsql-general

From	Michael Paquier
Subject	Re: Not storing MD5 hashed passwords
Date	October 15, 2015 03:50:10
Msg-id	CAB7nPqQpr81fNEjkMg8haN-TZ56FBVVWouxDhpxNFNzRofE7aw@mail.gmail.com Whole thread Raw
In response to	Re: Not storing MD5 hashed passwords (Jeff Janes <jeff.janes@gmail.com>)
Responses	Re: Not storing MD5 hashed passwords (Jeff Janes <jeff.janes@gmail.com>)
List	pgsql-general

Tree view

On Thu, Oct 15, 2015 at 7:19 AM, Jeff Janes <jeff.janes@gmail.com> wrote:
> On Wed, Oct 14, 2015 at 1:41 PM, John R Pierce <pierce@hogranch.com> wrote:
>>
>> On 10/14/2015 1:31 PM, Quiroga, Damian wrote:
>>
>>
>>
>> Does postgres support other (stronger) hashing algorithms than MD5 to
>> store the database passwords at disk?
>>
>> If not, is there any plan to move away from MD5?
> There are proposals to do so, the most advanced one I know of is with SCRAM.
> But I don't think any of them have turned into actual plans yet.

I would not be so sure, I heard of a patch regarding that for 9.6:
https://commitfest.postgresql.org/6/320/
--
Michael

pgsql-general by date:

From: "Quiroga, Damian"
Date: 15 October 2015, 01:28:08
Subject: Re: Not storing MD5 hashed passwords

From: Tiger Nassau
Date: 15 October 2015, 04:58:02
Subject: Re: using postgresql for session

Re: Not storing MD5 hashed passwords - Mailing list pgsql-general

Previous

Next