Home > mailing lists

Re: Encrypting pg_shadow passwords - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: Encrypting pg_shadow passwords
Date	June 20, 2001 18:31:57
Msg-id	Pine.LNX.4.30.0106202031050.725-100000@peter.localdomain Whole thread Raw
In response to	Re: Encrypting pg_shadow passwords ("Dominic J. Eidson" <sauron@the-infinite.org>)
List	pgsql-hackers

Tree view

Dominic J. Eidson writes:

> On Fri, 15 Jun 2001, Peter Eisentraut wrote:
>
> > Bruce Momjian writes:
> >
> > > People have complained that we store passwords unencrypted in pg_shadow.
> > > Long ago we agreed to a solution and I am going to try to implement that
> > > next.
> >
> > Whatever you do, please wait till I've finished the "authenticate after
> > fork" change.  (this weekend?)
>
> If you are going to do this this weekend, should I just wait with the PAM
> patch until then? (Patch against the new code)

This is finished, more or less, so both of you can look at
backend/libpq/auth.c, function ClientAuthentication() and hook in whatever
you want, blocking however long you want.

-- 
Peter Eisentraut   peter_e@gmx.net   http://funkturm.homeip.net/~peter

pgsql-hackers by date:

From: san_kalyan@yahoo.com (Chakravarthy K Sannedhi)
Date: 20 June 2001, 18:31:26
Subject: Copy Error

From: Peter Harvey
Date: 20 June 2001, 18:37:55
Subject: ODBC

Re: Encrypting pg_shadow passwords - Mailing list pgsql-hackers

Previous

Next