Home > mailing lists

PATCH: warn about, and deprecate, clear text passwords - Mailing list pgsql-hackers

From	David G. Johnston
Subject	PATCH: warn about, and deprecate, clear text passwords
Date	March 17 06:36:36
Msg-id	CAKFQuwapQ4egH-o10t_okpJeL+ocST7OEPTfviAABKbUznSVbw@mail.gmail.com Whole thread Raw
In response to	Re: PATCH: warn about, and deprecate, clear text passwords (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: PATCH: warn about, and deprecate, clear text passwords
List	pgsql-hackers

Tree view

On Sunday, March 16, 2025, Robert Haas <robertmhaas@gmail.com> wrote:

WARNING: you just caused a problem for somebody else

The user has no particular reason to care about the fact that the
password they just typed ended up in the log.

It could also be:

warning: your password is known to Big Brother

hint: use psql \password to supply a private password, or see “docs/wiki page” for more details and a way to pre-compute and send a private password via SQL.

Sure, we can’t make them drink, but let’s at least show them where we put the water trough. Some of them will care but be unaware.

We can make it an error later and do nothing, removing the choice but to figure out the proper way of changing their password.

David J.

pgsql-hackers by date:

From: Peter Smith
Date: 17 March, 06:32:39
Subject: Re: TOAST versus toast

From: Jan Wieck
Date: 17 March, 06:37:29
Subject: Re: TOAST versus toast

PATCH: warn about, and deprecate, clear text passwords - Mailing list pgsql-hackers

Previous

Next