Re: Changing Passwords as Encrypted not Clear-Text

From: Alban Hertroys <haramrae(at)gmail(dot)com>
To: MURAT KOÇ <m(dot)koc21(at)gmail(dot)com>
Cc: Adrian Klaver <adrian(dot)klaver(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org
Subject: Re: Changing Passwords as Encrypted not Clear-Text
Date: 2011-12-19 15:32:34
Message-ID: CAF-3MvPE72Y4VeGbE5yu-5OS-5ffwH1Szv4fV5F2RRLf8x97MQ@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

On 19 December 2011 16:26, MURAT KOÇ <m(dot)koc21(at)gmail(dot)com> wrote:
> Hi Adrian,
>
> I wrote a desktop application on Windows by using "Npgsql.dll". So, I send
> SQL statement to database from this application code. I can't use psql
> command line (I know "\password" command changes password encrypted text).
>
> Because of this, I have to use "ALTER USER" statement from application code.
> Or what could you give another advice?

Apparently psql doesn't send a plain ALTER ROLE statement. It probably
uses the binary protocol. Perhaps your application can do the same.

Alternatively, you can secure your (apparently insecure) connection to
the DB using SSL or an ssh tunnel or somesuch.

That said, if you are having issues with a fellow DBA, you should
create a policy that you don't use each others' login credentials when
it matters. You're DBA's, there is no security measure that will stop
you from obtaining private data from the databases you manage. Access
to the log files is only a small part of that.

--
If you can't see the forest for the trees,
Cut the trees and you'll see there is no forest.

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message Guillaume Lelarge 2011-12-19 15:45:28 Re: Changing Passwords as Encrypted not Clear-Text
Previous Message MURAT KOÇ 2011-12-19 15:26:33 Re: Changing Passwords as Encrypted not Clear-Text