| From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
|---|---|
| To: | Kevin Brannen <kevinb(at)nurseamerica(dot)net> |
| Cc: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: Authentication in batch processing |
| Date: | 2002-07-10 02:11:08 |
| Message-ID: | 200207100211.g6A2B8r13552@candle.pha.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Kevin Brannen wrote:
> Bruce Momjian wrote:
> ...
> >
> > 7.3 may remove PGPASSWORD, I think, and instead allow you to specify a
> > file that contains the password.
>
> But do you know how many hours it took me to find out about PGPASSWORD
> in the docs and now you want to change that? :-)
>
> How about all 4 approaches: on the command-line, from an env-var, from
> a file, and finally prompting if there's a tty. Pick any order you want
> on the first 3, but flexibility is important, and circumstances do
> change over time that may make 1 more desireable then the others.
PGPASSWORD is a security problem on platforms that can show environment
variables, mostly *BSD's, and most people don't know it is visible.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Nick Fankhauser | 2002-07-10 02:36:23 | Re: unsubscribe me for heavens sakes!!!!!!!!! |
| Previous Message | Bruce Momjian | 2002-07-10 02:09:41 | Re: disk space |