Home > mailing lists

Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c) - Mailing list pgsql-hackers

From	The Hermit Hacker
Subject	Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c)
Date	February 19, 1998 15:29:09
Msg-id	Pine.NEB.3.95.980219122657.17102Q-100000@hub.org Whole thread Raw
In response to	Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c) (Bruce Momjian <maillist@candle.pha.pa.us>)
Responses	Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c) (Bruce Momjian <maillist@candle.pha.pa.us>)
List	pgsql-hackers

Tree view

On Thu, 19 Feb 1998, Bruce Momjian wrote:

> >
> > The command
> > copy pg_user to stdout;
> >
> > will also show the cleartext password and I think it is hard to do a rewrite
> > here,
> > since this would also affect the pg_dump ?
>
> OK, I have committed code that removes the REVOKE from initdb, and does
> not allow them to do any adding or altering of users if there is a
> password involved AND the ACL for pg_user is null.  It prints a nice
> message telling them they need to issue the REVOKE command so normal
> users can't read the passwords.

    I put the REVOKE back in, with the appropriate rule rewrite...I've
tried it here and it works cleanly, and just masks out the passwd
entry...doesn't compensate for the 'copy' problem, but its better then
expecting the admin to go do the revoke on his own :(

pgsql-hackers by date:

From: Bruce Momjian
Date: 19 February 1998, 15:20:28
Subject: Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c)

From: Brett McCormick
Date: 19 February 1998, 15:45:21
Subject: Re: [HACKERS] Solution to the pg_user passwd problem !?? (c)

Re: AW: [HACKERS] Solution to the pg_user passwd problem !?? (c) - Mailing list pgsql-hackers

Previous

Next