| From: | Tatsuo Ishii <ishii(at)sraoss(dot)co(dot)jp> |
|---|---|
| To: | chap(at)anastigmatix(dot)net |
| Cc: | ishii(at)sraoss(dot)co(dot)jp, sfrost(at)snowman(dot)net, michael(dot)paquier(at)gmail(dot)com, robertmhaas(at)gmail(dot)com, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: SCRAM auth and Pgpool-II |
| Date: | 2017-07-14 01:54:38 |
| Message-ID: | 20170714.105438.1926837169006768483.t-ishii@sraoss.co.jp |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>> The comment in pg_hba.conf.sample seem to prefer md5 over clear text
>> password.
>>
>> # Note that "password" sends passwords in clear text; "md5" or
>> # "scram-sha-256" are preferred since they send encrypted passwords.
>
> Should that be reworded to eliminate "md5"? I'd consider "scram-sha-256"
> suitable over a clear channel, but I've never recommended "md5" for that.
I don't think so unless clear text password is superior than md5.
Best regards,
--
Tatsuo Ishii
SRA OSS, Inc. Japan
English: http://www.sraoss.co.jp/index_en.php
Japanese:http://www.sraoss.co.jp
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Haribabu Kommi | 2017-07-14 02:27:04 | Re: [BUGS] BUG #14634: On Windows pg_basebackup should write tar to stdout in binary mode |
| Previous Message | Thomas Munro | 2017-07-14 01:46:41 | Re: Inadequate infrastructure for NextValueExpr |