| From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Christoph Dalitz <christoph(dot)dalitz(at)hs-niederrhein(dot)de>, PG Mailing List <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: worried about PGPASSWORD drop |
| Date: | 2002-08-28 13:54:56 |
| Message-ID: | 200208281354.g7SDsu413639@candle.pha.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general pgsql-patches |
Tom Lane wrote:
> Christoph Dalitz <christoph(dot)dalitz(at)hs-niederrhein(dot)de> writes:
> > In the TODO list on http://developer.postgresql.org/todo.php,
> > I found the following entry:
> > - Remove PGPASSWORD because it is insecure on some OS's, in 7.4
> > Why?
>
> I don't agree with removing the feature either, since it's perfectly
> useful on many OSes. However your assumption:
The reason for the suggested removal is that we don't have a way of
knowing with OS's are secure, and which are not. If we could determine
which OS's were secure, and enable it only on those, it would be OK to
keep it.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2002-08-28 14:01:21 | Re: worried about PGPASSWORD drop |
| Previous Message | Markus Wollny | 2002-08-28 13:54:45 | Naming-scheme for db-files |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2002-08-28 14:01:21 | Re: worried about PGPASSWORD drop |
| Previous Message | Tom Lane | 2002-08-28 13:46:44 | Re: worried about PGPASSWORD drop |