| From: | Martin Goodson <kaemaril(at)googlemail(dot)com> |
|---|---|
| To: | pgsql-general(at)lists(dot)postgresql(dot)org |
| Subject: | Password complexity/history - credcheck? |
| Date: | 2024-06-22 23:28:21 |
| Message-ID: | 79692c1a-190c-413e-9442-a14a45c1069d@googlemail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hello.
Recently our security team have wanted to apply password complexity
checks akin to Oracle's profile mechanism to PostgreSQL, checking that a
password hasn't been used in x months etc, has minimum length, x special
characters and x numeric characters, mixed case etc.
As far as I'm aware there's nothing part of the standard 'community
edition' which gives us that, apart from passwordcheck - which doesn't
give you a password history.
Can anyone recommend a good mechanism to accomodate this? Ideally we're
looking for something well-established, reliable, and easily
configurable. Does anything spring to mind?
A colleague has been looking around, and stumbled across
https://github.com/MigOpsRepos/credcheck. Does anyone have any positive
(or negative) experience with this? I'm happy to download and apply to a
test database, obviously, but some indication of whether or not it's
worth looking at first would be greatly appreciated. Is this something
that the community would recommend?
Many thanks!
--
Martin Goodson.
"Have you thought up some clever plan, Doctor?"
"Yes, Jamie, I believe I have."
"What're you going to do?"
"Bung a rock at it."
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2024-06-23 00:23:08 | Re: Password complexity/history - credcheck? |
| Previous Message | Adrian Klaver | 2024-06-22 21:59:21 | Re: pg_dump restores as expected on some machines and reports duplicate keys on others |