| From: | Lincoln Yeoh <lyeoh(at)pop(dot)jaring(dot)my> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | Christopher Kings-Lynne <chriskl(at)familyhealth(dot)com(dot)au>, Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: FW: [ppa-dev] Severe bug in debian - phppgadmin opens up |
| Date: | 2001-11-28 10:06:09 |
| Message-ID: | 3.0.5.32.20011128180609.01aa0b50@192.228.128.13 |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
At 01:08 AM 11/28/01 -0500, Tom Lane wrote:
>Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:
>> ... But because we are Internet-enabled,
>> and because our insecurity is only local, it seems OK to people.
>
>It's not that it's "okay", it's that we haven't got any good
>alternatives. Password auth sucks from a convenience point of view
>(or even from a possibility point of view, for scripts; don't forget
>the changes that you yourself recently applied to guarantee that a
>script *cannot* supply a password to psql). Ident auth doesn't work,
>
Ack. We can't send in passwords to psql anymore? :(
Is there a safe way to send username and password to psql?
Cheerio,
Link.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dinesh Parikh | 2001-11-28 11:10:58 | Creating Postgres DB from Remote Machine |
| Previous Message | Alessio Bragadini | 2001-11-28 10:00:49 | Re: 7.2beta3 on Digital Alpha |