Re: Re: Proposal for encrypting pg_shadow passwords

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL-patches <pgsql-patches(at)postgresql(dot)org>
Subject: Re: Re: Proposal for encrypting pg_shadow passwords
Date: 2001-08-16 17:09:32
Message-ID: 200108161709.f7GH9WP05297@candle.pha.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-patches

> Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:
> > Also, I now need two salts, one base62 for crypt and a new one for MD5.
>
> They're carried in two different messages, so I don't see the problem.

But the salt is configured on startup, before you know your auth method,
right? Do I need to move that? Right now I have two salt fields based
on the same random and I send the appropriate one.

--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026

In response to

Responses

Browse pgsql-patches by date

  From Date Subject
Next Message Bruce Momjian 2001-08-16 17:11:00 Re: Re: Proposal for encrypting pg_shadow passwords
Previous Message Tom Lane 2001-08-16 17:06:45 Re: Re: Proposal for encrypting pg_shadow passwords