| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | PostgreSQL-patches <pgsql-patches(at)postgresql(dot)org> |
| Subject: | Re: [HACKERS] Removing a user's password |
| Date: | 2003-06-06 15:25:52 |
| Message-ID: | 27208.1054913152@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:
> Well, they are not actually removing it, just setting it to NULL, as
> though a password was never assigned. We have a way for users to set
> it, but no way for them to remove it.
If they had a way to remove it, then they'd no longer be able to log in
(assuming password auth is being used, and if it isn't then who cares?)
I'm not seeing much of anything here except a foot-gun. It might look
nice on the argument of symmetry, but as far as actual functionality
goes, I think it'd be a waste of code space. How many people have
actually asked for this, in all the years the password support has
been there?
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2003-06-06 15:29:30 | Re: Removing a user's password |
| Previous Message | Bruce Momjian | 2003-06-06 15:17:43 | Re: Sequence usage patch |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2003-06-06 15:29:30 | Re: Removing a user's password |
| Previous Message | Bruce Momjian | 2003-06-06 15:17:43 | Re: Sequence usage patch |