Quick Links

Re: brute force attacking the password

From:	Wim Bertels <wim(dot)bertels(at)khleuven(dot)be>
To:
Cc:	pgsql-admin(at)postgresql(dot)org
Subject:	Re: brute force attacking the password
Date:	2005-04-19 15:00:15
Message-ID:	42651CFF.1020703@khleuven.be
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-admin

>Can't people use PAM to get this effect if they want it?

what if u use pam with ldap, then u can use pg brute force cracking to obtain the ldap password, which is probably a bigger problem

>For most people password guessing isn't going to be a big problem as
>the database won't be accessible from totally untrusted places and watching
>the log files for guessing will probably be a good enough solution.

what if u do want the database to be globally accessible..

In response to

Re: brute force attacking the password at 2005-04-18 20:27:55 from Bruce Momjian

Responses

Re: brute force attacking the password at 2005-04-19 20:37:27 from Bruno Wolff III

Browse pgsql-admin by date

	From	Date	Subject
Next Message	Geoffrey	2005-04-19 15:13:11	Re: Postgres Log rotation not working in 8.0.2
Previous Message	Tom Lane	2005-04-19 14:57:49	Re: postmaster hangs