Quick Links

Re: sha1, sha2 functions into core?

From:	Andrew Dunstan <andrew(at)dunslane(dot)net>
To:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:	"Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>, Josh Berkus <josh(at)agliodbs(dot)com>, pgsql-hackers(at)postgresql(dot)org
Subject:	Re: sha1, sha2 functions into core?
Date:	2012-08-21 00:12:57
Message-ID:	5032D289.4090103@dunslane.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On 08/20/2012 07:08 PM, Tom Lane wrote:

> Moreover, as Josh just mentioned, anybody who
> thinks it might be insufficiently secure for their purposes has got
> plenty of alternatives available today (SSL certificates, PAM backed
> by whatever-you-want, etc).
>

Yeah, I think we need to emphasize this lots more. Anyone who wants
really secure authentication needs to be getting away from password
based auth altogether. Another hash function will make very little
difference.

cheers

andrew

In response to

Re: sha1, sha2 functions into core? at 2012-08-20 23:08:12 from Tom Lane

Responses

Re: sha1, sha2 functions into core? at 2012-08-21 00:35:21 from Joshua D. Drake

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Kevin Grittner	2012-08-21 00:32:42	Re: temporal support patch
Previous Message	Tatsuo Ishii	2012-08-21 00:12:02	Re: Outdated Japanse developers FAQ