Skip site navigation (1) Skip section navigation (2)

Re: Differences in crypt hash?

From: Richard Hodges <rh(at)matriplex(dot)com>
To: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
Cc: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-docs(at)postgresql(dot)org
Subject: Re: Differences in crypt hash?
Date: 2001-08-04 19:16:13
Message-ID: Pine.BSF.4.10.10108041210490.396-100000@mail.matriplex.com (view raw or flat)
Thread:
Lists: pgsql-docs
On Sat, 4 Aug 2001, Bruce Momjian wrote:

> > Richard Hodges <rh(at)matriplex(dot)com> writes:
> > > The problem is that my Solaris client does not authenticate against
> > > my server (7.0.3 built on FreeBSD).
> > 
> > Indeed, one of the nasty things about the 'crypt' authentication method
> > is that it assumes the crypt() library call acts the same on both client
> > and server machine.  As you've just discovered, that ain't always so.
> > 
> > There have been plans for some time to supersede our present password
> > auth methods with something more secure and portable (probably MD5
> > double hashing at both ends).  I think Vince V. is working on that,
> > but I've not heard anything about it lately.  You can read all about it
> > in the pghackers mail archives if you care.
> 
> I am trying to get it done for 7.2.  I have Vince's md5 code.  I just
> need to plug it into the authentication code.

Thanks for the info, Tom and Bruce.  I'll just have to use cleartext
passwords in the meantime :-(  Yuck.

All the best,

-Richard

-------------------------------------------
   Richard Hodges   | Matriplex, inc.
   Product Manager  | 769 Basque Way
  rh(at)matriplex(dot)com  | Carson City, NV 89706
    775-886-6477    | www.matriplex.com 


In response to

pgsql-docs by date

Next:From: Spitaels, JoeriDate: 2001-08-06 08:56:52
Subject:
Previous:From: Bruce MomjianDate: 2001-08-04 18:28:25
Subject: Re: Differences in crypt hash?

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group