| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Heikki Linnakangas <hlinnakangas(at)vmware(dot)com> |
| Cc: | Robert Haas <robertmhaas(at)gmail(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: reducing our reliance on MD5 |
| Date: | 2015-02-11 21:51:18 |
| Message-ID: | 13656.1423691478@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Heikki Linnakangas <hlinnakangas(at)vmware(dot)com> writes:
> On 02/11/2015 03:52 PM, Robert Haas wrote:
>> So are you thinking to integrate with the Cyrus SASL library, or do
>> you have another thought?
> I think we need to implement the primary MD5 replacement ourselves, so
> that it's always available without extra libraries. Otherwise it will
> not get much adoption, or the extra dependency will be a hassle anyway.
+1
> We could also support using a library like that for additional
> authentication mechanisms, though, for those who really need them.
We've already got a sufficiency of external authentication mechanisms.
If people wanted to use non-built-in authentication, we'd not be having
this discussion.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Antonin Houska | 2015-02-11 22:20:35 | Re: Corner case for add_path_precheck |
| Previous Message | Heikki Linnakangas | 2015-02-11 21:38:23 | Re: reducing our reliance on MD5 |