Re: Shouldn't .pgpass work with anything which uses libpq?

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: ljb <lbayuk(at)mindspring(dot)com>
Cc: pgsql-interfaces(at)postgresql(dot)org
Subject: Re: Shouldn't .pgpass work with anything which uses libpq?
Date: 2003-01-09 02:24:06
Message-ID: 200301090224.h092O7p00351@candle.pha.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-interfaces

ljb wrote:
> > However, your posting brings up an interesting issue. Our current code
> > makes no distinction between "" as a password, and a NULL password.
> > They are both equivalent to "I have supplied no password". If you
> > create a public user with an empty password, "", there is no way to log
> > in as that user, because "" is considered to be "no password".
> >
> > I don't want to play with this in 7.3.X, but is it something we should
> > consider cleaning up for 7.4?
>
> There is a precedence for the current behavior. Another DBMS I've used
> takes an empty password for an account to mean "this account is disabled".
> Therefore it is impossible in that DBMS to have a valid account with no
> password. Which to me is equivalent to PostgreSQL saying "if passwords are
> enabled, it is impossible to login to an account with an empty or NULL
> password". I like that behavior.

Oh, OK.

--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073

In response to

Browse pgsql-interfaces by date

  From Date Subject
Next Message Jeroen T. Vermeulen 2003-01-09 02:34:43 Re: libpqxx Large Objects
Previous Message ljb 2003-01-09 01:51:12 Re: still memory leaks with libpgtcl