Home > mailing lists

Re: Password complexity/history - credcheck? - Mailing list pgsql-general

From	Ron Johnson
Subject	Re: Password complexity/history - credcheck?
Date	June 23 05:38:12
Msg-id	CANzqJaBT+LPunvKPX=88s9xPDCOyJnTHK_Tpv8K85mchLnyStA@mail.gmail.com Whole thread Raw
In response to	Password complexity/history - credcheck? (Martin Goodson <kaemaril@googlemail.com>)
List	pgsql-general

Tree view

On Sat, Jun 22, 2024 at 7:28 PM Martin Goodson <kaemaril@googlemail.com> wrote:

Hello.

Recently our security team have wanted to apply password complexity
checks akin to Oracle's profile mechanism to PostgreSQL, checking that a
password hasn't been used in x months

There would have to be a pg_catalog table which stores login history.

etc, has minimum length, x special
characters and x numeric characters, mixed case etc.

Is that an after-the-fact scanner (with all the problems Tom mentioned), or is it a client-side "check while you're typing in the new password" scanner?

pgsql-general by date:

From: Tom Lane
Date: 23 June, 03:23:08
Subject: Re: Password complexity/history - credcheck?

From: Muhammad Ikram
Date: 23 June, 08:53:19
Subject: Re: pg_dump restores as expected on some machines and reports duplicate keys on others

Re: Password complexity/history - credcheck? - Mailing list pgsql-general

Previous

Next