| From: | Nathan Bossart <nathan(at)postgresql(dot)org> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: Warn upon successful MD5 password authentication. |
| Date: | 2026-02-23 17:22:48 |
| Message-ID: | E1vuZdw-000rGf-0v@gemulon.postgresql.org |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Warn upon successful MD5 password authentication.
This uses the "connection warning" infrastructure introduced by
commit 1d92e0c2cc to emit a WARNING when an MD5 password is used to
authenticate. MD5 password support was marked as deprecated in
v18 and will be removed in a future release of Postgres. These
warnings are on by default but can be turned off via the existing
md5_password_warnings parameter.
Reviewed-by: Andreas Karlsson <andreas(at)proxel(dot)se>
Reviewed-by: Xiangyu Liang <liangxiangyu_2013(at)163(dot)com>
Discussion: https://postgr.es/m/aYzeAYEbodkkg5e-%40nathan
Branch
------
master
Details
-------
https://git.postgresql.org/pg/commitdiff/bc60ee86066520ee0f86abd3d47bb8ab9757842f
Modified Files
--------------
doc/src/sgml/config.sgml | 3 ++-
src/backend/libpq/crypt.c | 17 +++++++++++++++++
src/test/authentication/t/001_password.pl | 2 ++
3 files changed, 21 insertions(+), 1 deletion(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2026-02-23 17:35:01 | pgsql: Cope with AIX's alignment woes by using _Pragma("pack"). |
| Previous Message | Peter Eisentraut | 2026-02-23 16:43:30 | pgsql: Rename validate_relation_kind() |