Hello,
My name is Sebastian and I am new to this list and community.
I have been following PostgreSQL for several years and I love the work done on it, but I never had the chance (time) to join.
I was going through the TODO list and studied the code and the thread discussing the optional fixes and I think I have a solution to this one which has the following advantages:
1. No change to the protocol is needed
2. Can be implemented in a both forward and backward compatible way
3. Does not require any shared memory trickery
4. Is immune to brute force attacks (probably)
If this is still something we wish to fix I will be happy to share the details (and implement it) - I don't wish to burden you with the details if there is no real interest in solving this.
Cheers
Sebastian
