Re: Differences in crypt hash?

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: Richard Hodges <rh(at)matriplex(dot)com>, pgsql-docs(at)postgresql(dot)org
Subject: Re: Differences in crypt hash?
Date: 2001-08-04 18:28:25
Message-ID: 200108041828.f74ISPJ13625@candle.pha.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-docs

> Richard Hodges <rh(at)matriplex(dot)com> writes:
> > The problem is that my Solaris client does not authenticate against
> > my server (7.0.3 built on FreeBSD).
>
> Indeed, one of the nasty things about the 'crypt' authentication method
> is that it assumes the crypt() library call acts the same on both client
> and server machine. As you've just discovered, that ain't always so.
>
> There have been plans for some time to supersede our present password
> auth methods with something more secure and portable (probably MD5
> double hashing at both ends). I think Vince V. is working on that,
> but I've not heard anything about it lately. You can read all about it
> in the pghackers mail archives if you care.

I am trying to get it done for 7.2. I have Vince's md5 code. I just
need to plug it into the authentication code.

--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026

In response to

Responses

Browse pgsql-docs by date

  From Date Subject
Next Message Richard Hodges 2001-08-04 19:16:13 Re: Differences in crypt hash?
Previous Message Tom Lane 2001-08-04 17:05:02 Re: Differences in crypt hash?