| From: | José Luis Tallón <jltallon(at)adv-solutions(dot)net> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: reducing our reliance on MD5 |
| Date: | 2015-02-11 14:41:17 |
| Message-ID: | 54DB6A0D.9080700@adv-solutions.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 02/11/2015 03:14 PM, Magnus Hagander wrote:
>
> [snip]
> The hash value in pg_authid already contains "md5" as a prefix. No
> need for another column.
Yes, but for variable length mechanism names (i.e. not just 3 chars) it
would become increasingly difficult to differentiate between the algo
name and the stored credentials.... especially if we delegated the list
of available mechanisms to an external library and/or in the case of
upgrades.
(variable-length matching based on a table of available mechs and
using strncmp isn't complicated, admittedly .... but why bother?)
... plus we have already added many new columns to store the new
"capabilities" in, as opposed to a bitmask.
I might well be overlooking something else, of course.
Regards,
/ J.L.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | José Luis Tallón | 2015-02-11 14:48:57 | Re: reducing our reliance on MD5 |
| Previous Message | Claudio Freire | 2015-02-11 14:39:50 | Re: reducing our reliance on MD5 |