Re: password_encryption default

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com>
Cc: pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject: Re: password_encryption default
Date: 2020-05-22 14:13:24
Views: Raw Message | Whole Thread | Download mbox | Resend email
Lists: pgsql-hackers

Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> writes:
> We didn't get anywhere with making the default authentication method in
> a source build anything other than trust. But perhaps we should change
> the default for password_encryption to nudge people to adopt SCRAM?
> Right now, passwords are still hashed using MD5 by default, unless you
> specify scram-sha-256 using initdb -A or similar.

I think what that was waiting on was for client libraries to become
SCRAM-ready. Do we have an idea of the state of play on that side?

regards, tom lane

In response to


Browse pgsql-hackers by date

  From Date Subject
Next Message Magnus Hagander 2020-05-22 14:31:19 Re: password_encryption default
Previous Message Tom Lane 2020-05-22 14:11:17 Re: snowball release