Skip site navigation (1) Skip section navigation (2)

Re: Password requirement in windows installer

From: Andrew Sullivan <ajs(at)crankycanuck(dot)ca>
To: pgsql-hackers(at)postgresql(dot)org
Subject: Re: Password requirement in windows installer
Date: 2007-08-31 19:28:40
Message-ID: 20070831192840.GI12876@phlogiston.dyndns.org (view raw or flat)
Thread:
Lists: pgsql-hackers
On Fri, Aug 31, 2007 at 02:12:03PM -0500, Decibel! wrote:
> ISTM that if someone breaches your network to the point where they can
> spoof identd, you're pretty much hosed anyway; so what's the point of
> hard-coding passwords in a config file somewhere then?

True.  I personally prefer cryptographic authentication for this
reason (but it's not perfect either -- if someone has root, they have
root.  You're hosed).  None of my employers ever seem willing to pay
the additional overhead, however.

A
-- 
Andrew Sullivan  | ajs(at)crankycanuck(dot)ca
The plural of anecdote is not data.
		--Roger Brinner

In response to

pgsql-hackers by date

Next:From: Andrew SullivanDate: 2007-08-31 19:39:20
Subject: Re: Password requirement in windows installer
Previous:From: Gregory StarkDate: 2007-08-31 19:20:20
Subject: Re: Password requirement in windows installer

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group