| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Christoph Dalitz <christoph(dot)dalitz(at)hs-niederrhein(dot)de> |
| Cc: | PG Mailing List <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: worried about PGPASSWORD drop |
| Date: | 2002-08-28 13:46:44 |
| Message-ID: | 20748.1030542404@sss.pgh.pa.us |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general pgsql-patches |
Christoph Dalitz <christoph(dot)dalitz(at)hs-niederrhein(dot)de> writes:
> In the TODO list on http://developer.postgresql.org/todo.php,
> I found the following entry:
> - Remove PGPASSWORD because it is insecure on some OS's, in 7.4
> Why?
I don't agree with removing the feature either, since it's perfectly
useful on many OSes. However your assumption:
> - The alternative (a new command line option for password)
is completely wrong; that is not the alternative being introduced.
See http://candle.pha.pa.us/main/writings/pgsql/sgml/libpq-envars.html
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Markus Wollny | 2002-08-28 13:54:45 | Naming-scheme for db-files |
| Previous Message | Tom Lane | 2002-08-28 13:36:55 | Re: Uninitialized page on pg_class ? |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2002-08-28 13:54:56 | Re: worried about PGPASSWORD drop |
| Previous Message | Christoph Dalitz | 2002-08-28 13:35:52 | worried about PGPASSWORD drop |