| From: | Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> |
|---|---|
| To: | Devrim Gündüz <devrim(at)gunduz(dot)org>, Stephen Frost <sfrost(at)snowman(dot)net> |
| Cc: | Craig Ringer <craig(at)2ndquadrant(dot)com>, pgsql-pkg-yum <pgsql-pkg-yum(at)postgresql(dot)org> |
| Subject: | Re: Can we stop defaulting to 'ident'? |
| Date: | 2020-05-20 13:09:24 |
| Message-ID: | 3869d8c9-c212-8d73-52f4-13b03abe4813@2ndquadrant.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-pkg-debian pgsql-pkg-yum |
On 2020-05-20 00:26, Devrim Gündüz wrote:
>> +1 to scram-sha-256 for the default for host-based/TCP connections.
>> For local, we should be using peer, just like Debian's default has
>> been for ages.
>
> YEah, this is what I committed just now. Still, would love to hear from
> others if there are any objections.
The upstream default is still to use md5 passwords by default, and some
deliberation has gone into that to keep it that way. So it would make
sense to have the RPMs also do that. The Debian packages also still use
md5. Some consistency across the board would be good. Otherwise it
will be very confusing for users if everyone just goes into their own
direction.
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Christoph Berg | 2020-05-20 13:40:35 | Re: Can we stop defaulting to 'ident'? |
| Previous Message | Laurenz Albe | 2020-05-20 07:20:33 | Re: Can we stop defaulting to 'ident'? |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Christoph Berg | 2020-05-20 13:40:35 | Re: Can we stop defaulting to 'ident'? |
| Previous Message | Peter Eisentraut | 2020-05-20 13:03:34 | Re: RHEL 6 and PostgreSQL 13 |