Home > mailing lists

Re: password_encryption default - Mailing list pgsql-hackers

From	Magnus Hagander
Subject	Re: password_encryption default
Date	May 27, 2020 15:56:34
Msg-id	CABUevEzWvXq76oA=cA5huLHTs2s5xNJE-+YOq0ZCBtmcJ_unxg@mail.gmail.com Whole thread Raw
In response to	Re: password_encryption default (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
Responses	Re: password_encryption default
List	pgsql-hackers

Tree view

On Wed, May 27, 2020 at 8:29 AM Peter Eisentraut <peter.eisentraut@2ndquadrant.com> wrote:

On 2020-05-27 08:00, Michael Paquier wrote:
> On Tue, May 26, 2020 at 10:25:25AM +0200, Peter Eisentraut wrote:
>> Yeah, I was too enthusiastic about removing that. Here is a better patch.
>
> + as an MD5 hash. (<literal>on</literal> is also accepted, as an alias
> + for <literal>md5</literal>.) The default is
> + <literal>scram-sha-256</literal>.
> Shouldn't password_encryption = on/true/1/yes be an equivalent of
> scram-sha-256 as the default gets changed?

I think these are mostly legacy options anyway, so if we wanted to make
a change, we should remove them.

Seems like the better choice yeah. Since we're changing the default anyway, maybe now is the time to do that? Or if not, maybe have it log an explicit deprecation warning when it loads a config with it?

Magnus Hagander
Me: https://www.hagander.net/
Work: https://www.redpill-linpro.com/

pgsql-hackers by date:

From: Ashutosh Bapat
Date: 27 May 2020, 15:11:16
Subject: Re: Getting ERROR with FOR UPDATE/SHARE for partitioned table.

From: Michael Paquier
Date: 27 May 2020, 16:13:35
Subject: Re: password_encryption default

Re: password_encryption default - Mailing list pgsql-hackers

Previous

Next