Home > mailing lists

Re: Password identifiers, protocol aging and SCRAM protocol - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: Password identifiers, protocol aging and SCRAM protocol
Date	September 27, 2016 16:48:34
Msg-id	CAB7nPqT2pULV4VhBVKQ70QNJpcVe7fuk_9DdqNnC-HXWxQmDKQ@mail.gmail.com Whole thread Raw
In response to	Re: Password identifiers, protocol aging and SCRAM protocol (Heikki Linnakangas <hlinnaka@iki.fi>)
Responses	Re: Password identifiers, protocol aging and SCRAM protocol (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On Tue, Sep 27, 2016 at 10:42 PM, Heikki Linnakangas <hlinnaka@iki.fi> wrote:
> The libpq-side is not. Just calling random() won't do. We haven't needed for
> random numbers in libpq before, but now we do. Is the pgcrypto solution
> portable enough that we can use it in libpq?

Do you think that urandom would be enough then? The last time I took a
look at that, I saw urandom on all modern platforms even those ones:
OpenBSD, NetBSD, Solaris, SunOS. For Windows the CryptGen stuff would
be nice enough I guess..
-- 
Michael

pgsql-hackers by date:

From: Heikki Linnakangas
Date: 27 September 2016, 16:43:08
Subject: Re: Password identifiers, protocol aging and SCRAM protocol

From: Tom Lane
Date: 27 September 2016, 16:49:25
Subject: Re: Make flex/bison checks stricter in Git trees

Re: Password identifiers, protocol aging and SCRAM protocol - Mailing list pgsql-hackers

Previous

Next