On Wed, Feb 26, 2025 at 2:07 PM kamal deen <kamaldeendba(at)gmail(dot)com> wrote:
> Hi All,
>
[snip]
> And also pls share the best way to rotate the DB user password in postgres.
>
I wrote a shell script to generate(*) a password, run the ALTER ROLE
command, push the VALID UNTIL out by 3 months, and either(**) "sed edit
.pgpass" or send the user an email with the new password.
*Via picking two random words from /usr/share/dict/words, a random 2 digit
number, concatenated with a period. "openssl rand -base64 48" works, too.
Got the basics from a StackExchange post.
**Depending on the user
--
Death to <Redacted>, and butter sauce.
Don't boil me, I'm still alive.
<Redacted> lobster!