| From: | Greg Sabino Mullane <htamfids(at)gmail(dot)com> |
|---|---|
| To: | Guillaume Lelarge <guillaume(dot)lelarge(at)dalibo(dot)com> |
| Cc: | pgsql-hackers(at)lists(dot)postgresql(dot)org |
| Subject: | Re: PATCH: warn about, and deprecate, clear text passwords |
| Date: | 2025-02-24 13:55:16 |
| Message-ID: | CAKAnmmLnqZD99EeFAYComu7azPDnsQVuWRBR8X9KWJ1c8TKe5g@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Guillaume Lelarge <guillaume(dot)lelarge(at)dalibo(dot)com> wrote:
I'm obviously +1 on this patch since I sent kinda the same patch two weeks
> ago
Ha ha, my brain forgot about that one (even though I commented on it!) -
apologies for that.
> set password_encryption to 'md5';
> create user u4 password 'md5u1';
> ...
It complains that I'm using a plain text password and a MD5-encrypted
> password. Can't be both. (Probably not an issue with this patch, but rather
> an issue with the commit that implemented MD5-password warnings.)
>
This is correct - it can be both. Not only are we sending a password in
clear text, but we then encrypt it using MD5. Hence, two warnings.
> If I use a real md5 password, it only complains about MD5 encrypted
> password:
Right. If someone sends us something that looks like an already-encrypted
password, we just store it. See get_password_type() in
backend/libpq/crypt.c. In which case, the actual password that a client
would type in would *not* be what was sent over the wire as part of the
ALTER USER / CREATE USER, so we don't complain.
Cheers,
Greg
--
Crunchy Data - https://www.crunchydata.com
Enterprise Postgres Software Products & Tech Support
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andres Freund | 2025-02-24 14:06:20 | Re: Draft for basic NUMA observability |
| Previous Message | Greg Sabino Mullane | 2025-02-24 13:46:32 | Re: psql \dh: List High-Level (Root) Tables and Indexes |