Quick Links

Re: password_encryption default

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com>
Cc:	pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: password_encryption default
Date:	2020-05-22 14:13:24
Message-ID:	25295.1590156804@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> writes:
> We didn't get anywhere with making the default authentication method in
> a source build anything other than trust. But perhaps we should change
> the default for password_encryption to nudge people to adopt SCRAM?
> Right now, passwords are still hashed using MD5 by default, unless you
> specify scram-sha-256 using initdb -A or similar.

I think what that was waiting on was for client libraries to become
SCRAM-ready. Do we have an idea of the state of play on that side?

regards, tom lane

In response to

password_encryption default at 2020-05-22 12:45:19 from Peter Eisentraut

Responses

Re: password_encryption default at 2020-05-22 14:31:19 from Magnus Hagander

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Magnus Hagander	2020-05-22 14:31:19	Re: password_encryption default
Previous Message	Tom Lane	2020-05-22 14:11:17	Re: snowball release