From: | Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at> |
---|---|
To: | Mladen Gogala <gogala(dot)mladen(at)gmail(dot)com>, pgsql-admin(at)lists(dot)postgresql(dot)org |
Subject: | Re: Password authorization |
Date: | 2022-01-21 14:18:50 |
Message-ID: | 5e4ed7296493684b40a5fa7fb009edf92f5e9ade.camel@cybertec.at |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin |
On Fri, 2022-01-21 at 09:10 -0500, Mladen Gogala wrote:
> On 1/20/22 09:25, Laurenz Albe wrote:
>
> > It is not quite clear what you mean, but I assume you want password complexity rules,
> > and you want to force users to change their password after a while.
> >
> > You cannot do any of that with passwords in the database; the best you can
> > do is set an expiration time for the user's ability to log in.
> Actually, you can. There is the standard "passwordcheck" module described in the documentation:
> https://www.postgresql.org/docs/current/passwordcheck.html
> You would have to do some C programming, but it's very possible.
That is no solution, because it cannot check hashed passwords
(except with cracklib). I wrote it.
Laurenz Albe
From | Date | Subject | |
---|---|---|---|
Next Message | ryaz aws | 2022-01-21 14:28:51 | Re: PGAdmin - psql tool issue |
Previous Message | Mladen Gogala | 2022-01-21 14:10:42 | Re: Password authorization |