| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: [pgadmin-hackers] Client-side password encryption |
| Date: | 2005-12-23 01:21:54 |
| Message-ID: | 14709.1135300914@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgadmin-hackers pgsql-hackers |
I wrote:
> I had forgotten that the Windows build is broken. I'll see what I can
> do with throwing together the cleaner-API function.
Done, but I noticed that the change to createuser has arguably broken
it; at least we need to change the docs. To wit, the docs say
-E
--encrypted
Encrypts the user's password stored in the database. If not
specified, the default password behavior is used.
-N
--unencrypted
Does not encrypt the user's password stored in the database. If not
specified, the default password behavior is used.
As currently coded, however, the behavior when neither switch is given
is to force the password to be encrypted --- the database's
password_encryption setting is overridden.
I'm not sure we can do much about this --- certainly we don't want the
default behavior of createuser to still be to send an unencrypted
password. But if we leave the code as-is the docs need a change.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Christopher Kings-Lynne | 2005-12-23 02:06:24 | Re: [pgadmin-hackers] Client-side password encryption |
| Previous Message | Tom Lane | 2005-12-22 23:53:12 | Re: [pgadmin-hackers] Client-side password encryption |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Qingqing Zhou | 2005-12-23 02:01:09 | Re: what is the smallest working page size for postgresql |
| Previous Message | Qingqing Zhou | 2005-12-23 00:53:04 | Re: [Bizgres-general] WAL bypass for INSERT, UPDATE and |