From: | Bruce Momjian <maillist(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | M(dot)Boekhold(at)et(dot)tudelft(dot)nl |
Cc: | pgsql-hackers(at)postgreSQL(dot)org |
Subject: | Re: [HACKERS] User authentication bug? |
Date: | 1998-07-31 19:53:25 |
Message-ID: | 199807311953.PAA29912@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
> Hi,
>
> I was having trouble with user authentication, so I submerged myself in
> the source (UTSL ie. Use The Source luke ;) to see if I could figure out
> what I was doing wrong:
>
> While using passwords stored in pg_shadow (pg_user), I cannot connect to
> the backend using the 'password' authentication, I can connect using 'crypt'.
>
> Now, I found from the source that the routines that do crypt checking
> also seem to support plain passwords. But this code is never used,
> because apparently uaCrypt is never set for 'password', while my
> understanding is that this should be set when there is no password-file
> specified in pg_hba.conf.
>
> AlthoughcCheckPassword() seems to provide for this, it appears not to be
> working.
>
> Anybody knows what's going on here? I intent to fire up a debugger here
> to see if I can figure out what's wrong, but thought asking first doesn't
> do any harm.
>
> btw. is there anywhere a good description on how control flows during
> this phase of connecting? It all looks very difficult, with lots of
> function pointer being passed around etc.
Yes, very confusing. Only Tom Lane understands it, I think. Maybe
Tatsuo too.
--
Bruce Momjian | 830 Blythe Avenue
maillist(at)candle(dot)pha(dot)pa(dot)us | Drexel Hill, Pennsylvania 19026
+ If your life is a hard drive, | (610) 353-9879(w)
+ Christ can be your backup. | (610) 853-3000(h)
From | Date | Subject | |
---|---|---|---|
Next Message | Maarten Boekhold | 1998-07-31 20:05:40 | Re: [HACKERS] User authentication bug? |
Previous Message | Maarten Boekhold | 1998-07-31 19:23:10 | User authentication bug? |