On 9/19/17 21:44, Michael Paquier wrote: >> The patch that Heikki posted seemed reasonable to me as a starting >> point, but there probably needs to be more "how" information somewhere. > > I agree with that. > > + <para> > + Installations using MD5 authentication are encouraged to switch to > + SCRAM-SHA-256, unless using older client programs or drivers that don't > + support it yet. > + </para> > I think that the addition of a link to > https://wiki.postgresql.org/wiki/List_of_drivers would be appropriate.
I don't have any expectation that that list will be kept up to date.
I am not confident that it will be either, but what could we ever have more confidence in being kept up-to-date than something anyone can update which is hosted on a community asset? If we can't collectively keep it up-to-date, then shame on us and what hope is there for anything else? Certainly if it is not linked to from the docs, then it is just that much less likely to be kept up to date. The problem with it currently is that it implies anything using libpq supports scram, even though a libpq which supports scram has not even been released yet.