Thread: crypt(table.field) ?
i know "password" can be used in creating/altering user
information (as used via GRANT and REVOKE) but is there any
facility within postgres to CRYPT() a value?
create rule new_folk as on insert to view_folk do instead
insert into folk_table
(created,login,password)
values
(current_timestamp,new.login,CRYPT(new.password))
;
or must this be done (say, in perl) before postgres sees it?
--
will@serensoft.com
http://sourceforge.net/projects/newbiedoc -- we need your brain!
http://www.dontUthink.com/ -- your brain needs us!
will trillich writes: > i know "password" can be used in creating/altering user > information (as used via GRANT and REVOKE) but is there any > facility within postgres to CRYPT() a value? See contrib/pgcrypto for hashing functions. -- Peter Eisentraut peter_e@gmx.net http://funkturm.homeip.net/~peter
On Thu, Apr 26, 2001 at 09:15:45AM -0500, will trillich wrote: > i know "password" can be used in creating/altering user > information (as used via GRANT and REVOKE) but is there any > facility within postgres to CRYPT() a value? At the moment no. You should patch your PostgreSQL source for that. There is a patch in techdocs site which imports system crypt to SQL level and there is my pgcrypto package which does this and more... http://www.l-t.ee/marko/pgsql/pgcrypto-0.3.tar.gz -- marko
On Thu, Apr 26, 2001 at 05:20:53PM +0200, Peter Eisentraut wrote:
> will trillich writes:
>
> > i know "password" can be used in creating/altering user
> > information (as used via GRANT and REVOKE) but is there any
> > facility within postgres to CRYPT() a value?
>
> See contrib/pgcrypto for hashing functions.
I've got 7.0.3potato on my debian system, and i've also done
apt-get install postgresql-contrib
which looks like it's got lots of meat to it, but
dpkg -L postgresql-contrib | grep crypt
shows nada.
Care to explain -- in terms a Debian newbie might grok --
what "contrib/pgcrypto" means?
--
don't visit this page. it's bad for you. take my expert word for it.
http://www.salon.com/people/col/pagl/2001/03/21/spring/index1.html
will@serensoft.com
http://sourceforge.net/projects/newbiedoc -- we need your brain!
http://www.dontUthink.com/ -- your brain needs us!
will trillich <will@serensoft.com> wrote:
>On Thu, Apr 26, 2001 at 05:20:53PM +0200, Peter Eisentraut wrote:
>> See contrib/pgcrypto for hashing functions.
>Care to explain -- in terms a Debian newbie might grok -- what
>"contrib/pgcrypto" means?
Peter is referring to a directory in the PostgreSQL sources, not to a part
of a binary package. "apt-get source postgresql" and look around.
HTH,
Ray
--
Don't think of yourself as an organic pain collector racing toward oblivion.
Dogbert
On Thu, Apr 26, 2001 at 02:01:46PM -0500, will trillich wrote:
> On Thu, Apr 26, 2001 at 05:20:53PM +0200, Peter Eisentraut wrote:
> > will trillich writes:
> >
> > > i know "password" can be used in creating/altering user
> > > information (as used via GRANT and REVOKE) but is there any
> > > facility within postgres to CRYPT() a value?
> >
> > See contrib/pgcrypto for hashing functions.
>
> I've got 7.0.3potato on my debian system, and i've also done
...
> Care to explain -- in terms a Debian newbie might grok --
> what "contrib/pgcrypto" means?
First contrib/pgcrypto is 7.1-only. It is supposed to be a
place for cryptography-related functions. At the moment it
contains only hashing and ascii-conversion functions: digest(),
encode(), decode().
Now I have released my newer code as separate release (they were
not fit for 7.1-in-freeze) and it contains more stuff:
crypt(password, salt)
- like the crypt(3) in UN*X-like systems for password
crypting - DES and MD5-based crypt is supported.
gen_salt(type) for above crypt() as generating salts with only
SQL is pain.
hmac(key, hash_type) is a implementation of RFC2104 "Hashed
Message Authentication Code". Sorta passworded-hash.
encrypt(data, key, type) with decrypt() - access to raw ciphers
with little bit more. They should be used only when you
know what you are doing. In the next release they will
be renamed to raw_encrypt()/raw_decrypt() and much
better encrypt()/decrypt() will be provided based on
OpenPGP (RFC2440) - I am still developing this.
Also pgcrypto-0.3 should work with both 7.0 and 7.1.
--
marko
<quote who="J.H.M. Dassen (Ray)">
> will trillich <will@serensoft.com> wrote:
>
> >Care to explain -- in terms a Debian newbie might grok -- what
> >"contrib/pgcrypto" means?
>
> Peter is referring to a directory in the PostgreSQL sources, not to a part
> of a binary package. "apt-get source postgresql" and look around.
You'll often find things like these in the /usr/share/doc/<package>/examples
directory under Debian. There's always a few goodies in there anyway. :)
- Jeff
--
o/~ In spite of all those keystrokes, you're addicted to vim.
*ka-ching!* o/~
On Sun, Apr 29, 2001 at 03:04:18PM +1000, Jeff Waugh wrote: > <quote who="J.H.M. Dassen (Ray)"> > > > will trillich <will@serensoft.com> wrote: > > > > >Care to explain -- in terms a Debian newbie might grok -- what > > >"contrib/pgcrypto" means? > > > > Peter is referring to a directory in the PostgreSQL sources, not to a part > > of a binary package. "apt-get source postgresql" and look around. > > You'll often find things like these in the /usr/share/doc/<package>/examples > directory under Debian. There's always a few goodies in there anyway. :) aha. there's "apt-get install postgresql-crypt" but for 7.0.3 there's no crypt yet. i'll wait. :) -- don't visit this page. it's bad for you. take my expert word for it. http://www.salon.com/people/col/pagl/2001/03/21/spring/index1.html will@serensoft.com http://sourceforge.net/projects/newbiedoc -- we need your brain! http://www.dontUthink.com/ -- your brain needs us!