Skip site navigation (1) Skip section navigation (2)

Re: MD5 PasswordPacket

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: Bruce Badger <bruce_badger(at)BadgerSE(dot)com>
Cc: pgsql-interfaces(at)postgresql(dot)org
Subject: Re: MD5 PasswordPacket
Date: 2002-12-20 02:33:46
Message-ID: 200212200233.gBK2XkC22600@candle.pha.pa.us (view raw or flat)
Thread:
Lists: pgsql-interfaces
Bruce Badger wrote:
> Where can I read up on the encoding of the String in the PasswordPacket 
> required when I get an AuthenticationMD5Password message from the backend?

Read the source code.   :-)

> 
> I've looked at some code that implements the encoding, but reading the 
> specification (the intent) would be most useful.

That string is encoded twice, once with the username string, and another
time with the random salt sent from the server.

> One question in particular springs to mind: can usernames and passwords 
> be made up of multi-byte characters, and how does this affect the MD5 
> encoding?

It should be fine, I think.  The encoding is just a string if bytes to
MD5, and there is no encoding conversion done as part of that transfer.

-- 
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman(at)candle(dot)pha(dot)pa(dot)us               |  (610) 359-1001
  +  If your life is a hard drive,     |  13 Roberts Road
  +  Christ can be your backup.        |  Newtown Square, Pennsylvania 19073

In response to

pgsql-interfaces by date

Next:From: Lee KindnessDate: 2002-12-20 15:07:40
Subject: Re: [GENERAL] RPMS for Redhat 7.3 ??
Previous:From: Bruce BadgerDate: 2002-12-20 02:25:16
Subject: MD5 PasswordPacket

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group