Quick Links

Re: Successor of MD5 authentication, let's use SCRAM

From:	Stephen Frost <sfrost(at)snowman(dot)net>
To:	Peter Eisentraut <peter_e(at)gmx(dot)net>
Cc:	Heikki Linnakangas <hlinnakangas(at)vmware(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgreSQL(dot)org>
Subject:	Re: Successor of MD5 authentication, let's use SCRAM
Date:	2012-10-22 17:25:47
Message-ID:	20121022172547.GM29165@tamriel.snowman.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

* Peter Eisentraut (peter_e(at)gmx(dot)net) wrote:
> On 10/12/12 3:44 PM, Stephen Frost wrote:
> > In general, I think it's good to build on existing implementations where
> > possible. Perhaps we could even consider using something which already
> > exists for this?
>
> Sounds like SASL to me.

aiui, that would allow us to support SCRAM and we could support
Kerberos/GSSAPI under SASL as well... Not sure how comfortable folks
would be with moving to that though.

Thanks,

Stephen

In response to

Re: Successor of MD5 authentication, let's use SCRAM at 2012-10-22 15:21:43 from Peter Eisentraut

Responses

Re: Successor of MD5 authentication, let's use SCRAM at 2012-10-23 16:53:14 from Peter Eisentraut

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Andrew Dunstan	2012-10-22 17:37:08	Re: Database object names and libpq in UTF-8 locale on Windows
Previous Message	Sebastien FLAESCH	2012-10-22 16:53:54	Re: Database object names and libpq in UTF-8 locale on Windows