Skip site navigation (1) Skip section navigation (2)

Re: Differences in crypt hash?

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: Richard Hodges <rh(at)matriplex(dot)com>, pgsql-docs(at)postgresql(dot)org
Subject: Re: Differences in crypt hash?
Date: 2001-08-04 18:28:25
Message-ID: 200108041828.f74ISPJ13625@candle.pha.pa.us (view raw or flat)
Thread:
Lists: pgsql-docs
> Richard Hodges <rh(at)matriplex(dot)com> writes:
> > The problem is that my Solaris client does not authenticate against
> > my server (7.0.3 built on FreeBSD).
> 
> Indeed, one of the nasty things about the 'crypt' authentication method
> is that it assumes the crypt() library call acts the same on both client
> and server machine.  As you've just discovered, that ain't always so.
> 
> There have been plans for some time to supersede our present password
> auth methods with something more secure and portable (probably MD5
> double hashing at both ends).  I think Vince V. is working on that,
> but I've not heard anything about it lately.  You can read all about it
> in the pghackers mail archives if you care.

I am trying to get it done for 7.2.  I have Vince's md5 code.  I just
need to plug it into the authentication code.

-- 
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman(at)candle(dot)pha(dot)pa(dot)us               |  (610) 853-3000
  +  If your life is a hard drive,     |  830 Blythe Avenue
  +  Christ can be your backup.        |  Drexel Hill, Pennsylvania 19026

In response to

Responses

pgsql-docs by date

Next:From: Richard HodgesDate: 2001-08-04 19:16:13
Subject: Re: Differences in crypt hash?
Previous:From: Tom LaneDate: 2001-08-04 17:05:02
Subject: Re: Differences in crypt hash?

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group