Skip site navigation (1) Skip section navigation (2)

Security Questions of PostgreSQL

From: Gordon Yuen <chananson(at)hotmail(dot)com>
To: pgsql-admin(at)postgresql(dot)org
Subject: Security Questions of PostgreSQL
Date: 1998-08-19 10:45:55
Message-ID: 35DAACE2.86267CDE@hotmail.com (view raw or flat)
Thread:
Lists: pgsql-admin
Dear folks,

    I have two questions:

1. Can anyone find a way to let user alter the their own password,
instead of altered by database super user? I use 'password' option in
'pg_hba.conf', then I find the pg_shadow table is only altered by super
user 'postgres'. Then I tried 'password pg_passwd.txt', but the
executable 'pg_passwd' could only be executed by 'postgres' or 'root'.
What gives?

2. I understand that an ODBC client send the username/password in clear
text via network for authentication, am I wrong? How can be secured?

Gordon


pgsql-admin by date

Next:From: Marc Howard ZuckmanDate: 1998-08-19 12:49:10
Subject: Re: [ADMIN] Backup of postgres
Previous:From: Przemyslaw BakDate: 1998-08-19 08:50:52
Subject: Backup of postgres

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group