Quick Links

Re: Proposal obfuscate password in pg logs

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Guanqun Yang <gy2025(at)nyu(dot)edu>
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Proposal obfuscate password in pg logs
Date:	2023-12-02 21:04:10
Message-ID:	441005.1701551050@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Guanqun Yang <gy2025(at)nyu(dot)edu> writes:
> We notice Postgres logs, pg_stat_statements and pg_stat_activity will
> record passwords when using "CREATE" statement to create user with
> password. Can we provide users with an option to obfuscate those passwords?

See the many, many prior discussions of this idea.
The short answer is that you're better off securing your logs.

regards, tom lane

In response to

Proposal obfuscate password in pg logs at 2023-12-02 20:36:44 from Guanqun Yang

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Nathan Bossart	2023-12-02 21:53:20	Re: Emitting JSON to file using COPY TO
Previous Message	Rafael Thofehrn Castro	2023-12-02 20:56:56	Re: Proposal: In-flight explain logging