| From: | Wim Bertels <wim(dot)bertels(at)khleuven(dot)be> |
|---|---|
| To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: brute force attacking the password |
| Date: | 2005-04-19 13:12:58 |
| Message-ID: | 426503DA.8080609@khleuven.be |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Bruce Momjian schreef:
>Wim Bertels wrote:
>
>
>>LS,
>>
>>is there a way of securing the postgresql-server against brute force
>>password cracking ?
>>iow: is there a way of setting eg a maximum number of login attempts, or
>>using a time-out or ..?
>>
>>+ securing on server level
>>
>>
>
>No, there is not. Does anyone want to suggest a possible implementation
>for the TODO list?
>
>
evident remarks:
http://www.woodmann.com/fravia/protec.htm
SHS instead of MD5?
http://www.secinf.net/firewalls_and_VPN/Firewalls_Complete/Firewalls_Complete__Cryptography_Is_it_Enough.html
..
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Hans Peter Wiedau | 2005-04-19 13:28:05 | Re: Destroying all exisitng tables in database |
| Previous Message | Bruno Wolff III | 2005-04-19 11:23:04 | Re: brute force attacking the password |