| From: | "Ansley, Michael" <Michael(dot)Ansley(at)intec(dot)co(dot)za> |
|---|---|
| To: | "'Gene Sokolov'" <hook(at)aktrad(dot)ru>, "'pgsql-hackers(at)postgresql(dot)org'" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | RE: Security WAS RE: [HACKERS] Updated TODO list |
| Date: | 1999-07-16 08:26:45 |
| Message-ID: | 1BF7C7482189D211B03F00805F8527F70ED047@S-NATH-EXCH2 |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
I know that you can do both. It seemed from previous postings, however,
that there was an issue about the urgency of each, if they are actually
separate issues. I would have thought that the two are linked, and would be
solved as such.
MikeA
>> I have no idea where this misconception came from, but it's
>> just plain
>> incorrect. You can do both - store hashes instead of
>> plaintext passwords and
>> send logins securely over the network. Yes, the current
>> authentication
>> scheme does not allow for it. But it just means that the
>> scheme is outdated.
>> There are plenty of good secure solutions. It's just a
>> matter of choosing
>> one.
>>
>> Gene Sokolov.
>>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Zeugswetter Andreas IZ5 | 1999-07-16 08:28:14 | AW: [HACKERS] RE: [GENERAL] Transaction logging |
| Previous Message | Gene Sokolov | 1999-07-16 08:18:36 | Re: Security WAS RE: [HACKERS] Updated TODO list |