Home > mailing lists

Re: scram-sha-256 encrypted password in pgpass - Mailing list pgsql-admin

From	David G. Johnston
Subject	Re: scram-sha-256 encrypted password in pgpass
Date	June 23, 2020 01:04:42
Msg-id	CAKFQuwZHLq1o55-sSaeuF8hU=9nYXN8MNTdL50A7W7Zf_6ZjHQ@mail.gmail.com Whole thread Raw
In response to	scram-sha-256 encrypted password in pgpass (Pavan Kumar <pavan.dba27@gmail.com>)
Responses	Re: scram-sha-256 encrypted password in pgpass Re: scram-sha-256 encrypted password in pgpass
List	pgsql-admin

Tree view

Please don't cross-post.

On Mon, Jun 22, 2020 at 1:35 PM Pavan Kumar <pavan.dba27@gmail.com> wrote:

scram-sha-256 encrypted passwords are supported in .pgpass file ? If yes kindly provide us an example.

I am using below format and it is not working for me
pglnx1:5432:pgbouncer:pgadmin:"SCRAM-SHA-256$4096:6IDsjfedwsdpymp0Za7jaMew==$rzSoYL4ZYsW1WJAj7Lt3JtNLNR73AVY7sfsauikweblk][=:Hxx/juPXJZHy5djPctI="

The documentation doesn't say so one way or the other so I would go with no. The password in the pgpass file has to be the plaintext password. The client, upon speaking with the server, will decide whether to send the plaintext password to the server or encrypt it prior to transmission.

What would be the point of storing the encrypted password instead of the plaintext one?

David J.

pgsql-admin by date:

From: Adrian Klaver
Date: 23 June 2020, 00:56:19
Subject: Re: scram-sha-256 encrypted password in pgpass

From: Pavan Kumar
Date: 23 June 2020, 01:32:12
Subject: Re: scram-sha-256 encrypted password in pgpass

Re: scram-sha-256 encrypted password in pgpass - Mailing list pgsql-admin

Previous

Next