| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | "Dominic J(dot) Eidson" <sauron(at)the-infinite(dot)org> |
| Cc: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Encrypting pg_shadow passwords |
| Date: | 2001-06-20 18:33:06 |
| Message-ID: | Pine.LNX.4.30.0106202031050.725-100000@peter.localdomain |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Dominic J. Eidson writes:
> On Fri, 15 Jun 2001, Peter Eisentraut wrote:
>
> > Bruce Momjian writes:
> >
> > > People have complained that we store passwords unencrypted in pg_shadow.
> > > Long ago we agreed to a solution and I am going to try to implement that
> > > next.
> >
> > Whatever you do, please wait till I've finished the "authenticate after
> > fork" change. (this weekend?)
>
> If you are going to do this this weekend, should I just wait with the PAM
> patch until then? (Patch against the new code)
This is finished, more or less, so both of you can look at
backend/libpq/auth.c, function ClientAuthentication() and hook in whatever
you want, blocking however long you want.
--
Peter Eisentraut peter_e(at)gmx(dot)net http://funkturm.homeip.net/~peter
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2001-06-20 18:36:09 | Re: RTLD_GLOBAL on openbsd |
| Previous Message | Peter Harvey | 2001-06-20 17:47:11 | ODBC |