Home > mailing lists

Re: Replacing MD5 hash in pg_auth... - Mailing list pgsql-general

From	Andrew - Supernews
Subject	Re: Replacing MD5 hash in pg_auth...
Date	April 17, 2006 11:19:06
Msg-id	slrne46ucc.222p.andrew+nonews@atlantis.supernews.net Whole thread Raw
In response to	Replacing MD5 hash in pg_auth... ("Peter van der Maas" <peter@abitogroup.com>)
List	pgsql-general

Tree view

On 2006-04-15, "Peter van der Maas" <peter@abitogroup.com> wrote:
> Hello,
>
> Is it correct to assume that if a user has write permission to
> \data\global\pg_auth on a Win32 machine, the superuser's MD5 hash can be
> replaced with one of a known origin in order to own the DB?

It's worse than that. If you can _read_ pg_auth, then you can log in as
any user who has an MD5 password provided that pg_hba.conf allows md5
auth - the values stored in pg_auth (and pg_shadow) are password equivalents
for the purposes of md5 auth.

--
Andrew, Supernews
http://www.supernews.com - individual and corporate NNTP services

pgsql-general by date:

From: Robert Treat
Date: 17 April 2006, 11:16:37
Subject: Re: Google Summer of Code (Fix aggregate operators & Implement features such as Data Cubes and Skyline)

From: "surabhi.ahuja"
Date: 17 April 2006, 12:06:17
Subject: Re: hard shutdown of system

Re: Replacing MD5 hash in pg_auth... - Mailing list pgsql-general

Previous

Next