From: | Michael Paquier <michael(dot)paquier(at)gmail(dot)com> |
---|---|
To: | Magnus Hagander <magnus(at)hagander(dot)net> |
Cc: | Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: password_encryption, default and 'plain' support |
Date: | 2017-05-03 23:30:05 |
Message-ID: | CAB7nPqSQXeOoDMGoCFxDL5mJfD9O7TfCYtdrN=9hKBdMXJU9jQ@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
On Wed, May 3, 2017 at 9:57 PM, Magnus Hagander <magnus(at)hagander(dot)net> wrote:
>
>
> On Wed, May 3, 2017 at 2:25 PM, Michael Paquier <michael(dot)paquier(at)gmail(dot)com>
> wrote:
>>
>> On Wed, May 3, 2017 at 8:38 PM, Magnus Hagander <magnus(at)hagander(dot)net>
>> wrote:
>> > On Wed, May 3, 2017 at 1:31 PM, Heikki Linnakangas <hlinnaka(at)iki(dot)fi>
>> > wrote:
>> >> In various threads on SCRAM, we've skirted around the question of
>> >> whether
>> >> we should still allow storing passwords in plaintext. I've avoided
>> >> discussing that in those other threads, because it's been an orthogonal
>> >> question, but it's a good question and we should discuss it.
>> >>
>> >> So, I propose that we remove support for password_encryption='plain' in
>> >> PostgreSQL 10. If you try to do that, you'll get an error.
>> >
>> > Is there any usecase at all for it today?
>>
>> For developers running applications on top of Postgres?
>
>
> I don't get it. How does password_encryption=plain help them?
Sanity checks at development stage of web applications to make sure
that the password strength automatically generated by the application
at first login is strong enough. I personally found that helpful for
this purpose.
--
Michael
From | Date | Subject | |
---|---|---|---|
Next Message | Haribabu Kommi | 2017-05-04 00:30:44 | Re: Re: [BUGS] BUG #14634: On Windows pg_basebackup should write tar to stdout in binary mode |
Previous Message | Kevin Grittner | 2017-05-03 23:07:27 | Re: How huge does mvtest_huge need to be? |