From: | momjian(at)postgresql(dot)org |
---|---|
To: | pgsql-committers(at)postgresql(dot)org |
Subject: | pgsql/src/bin/psql command.c |
Date: | 2001-10-11 16:54:18 |
Message-ID: | 200110111654.f9BGsIB14481@postgresql.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-committers |
CVSROOT: /cvsroot
Module name: pgsql
Changes by: momjian(at)postgresql(dot)org 01/10/11 12:54:18
Modified files:
src/bin/psql : command.c
Log message:
Tatsuo Ishii <t-ishii(at)sra(dot)co(dot)jp> writes:
> As you can see, psql reconnect as any user if the password is same as
> foo. Of course this is due to the careless password setting, but I
> think it's better to prompt ANY TIME the user tries to switch to
> another user. Comments?
Yeah, I agree. Looks like a simple change in dbconnect():
/*
* Use old password if no new one given (if you didn't have an old
* one, fine)
*/
if (!pwparam && oldconn)
pwparam = PQpass(oldconn);
to
/*
* Use old password (if any) if no new one given and we are
* reconnecting as same user
*/
if (!pwparam && oldconn && PQuser(oldconn) && userparam &&
strcmp(PQuser(oldconn), userparam) == 0)
pwparam = PQpass(oldconn);
regards, tom lane
From | Date | Subject | |
---|---|---|---|
Next Message | tgl | 2001-10-11 18:06:53 | pgsql/src/backend/utils/adt datetime.c |
Previous Message | momjian | 2001-10-11 16:35:50 | pgsql/doc TODO |