| From: | Joe Conway <mail(at)joeconway(dot)com> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Michael Paquier <michael(dot)paquier(at)gmail(dot)com> |
| Cc: | PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: CREATE/ALTER ROLE PASSWORD ('value' USING 'method') |
| Date: | 2017-03-08 16:17:20 |
| Message-ID: | 8c37e182-8398-5e79-dae5-2f77596675a6@joeconway.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 03/07/2017 08:29 PM, Tom Lane wrote:
> Michael Paquier <michael(dot)paquier(at)gmail(dot)com> writes:
>> here is a separate thread dedicated to the following extension for
>> CREATE/ALTER ROLE: PASSWORD ('value' USING 'method').
>
> The parentheses seem weird ... do we really need those?
+1
> + If you do not plan to use password authentication you can omit this
> + option. The methods supported are <literal>md5</> to enforce a password
> + to be MD5-encrypted, <literal>scram</> for a SCRAM-encrypted password
> + and <literal>plain</> for an unencrypted password. If the password
Can we please stop calling this encryption? What is being done is a form
of cryptographic hashing, not encryption.
Joe
--
Crunchy Data - http://crunchydata.com
PostgreSQL Support for Secure Enterprises
Consulting, Training, & Open Source Development
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dilip Kumar | 2017-03-08 16:20:55 | Re: Parallel bitmap heap scan |
| Previous Message | Pavel Stehule | 2017-03-08 16:13:06 | Re: new gcc 7.0.1 warnings |