| From: | Richard Welty <rwelty(at)averillpark(dot)net> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: How to encrypt data in Postgresql |
| Date: | 2003-07-25 13:54:47 |
| Message-ID: | E19g31z-00041W-MV@skipper.averillpark.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Fri, 25 Jul 2003 09:33:30 -0400 "Reuben D. Budiardja" <techlist(at)voyager(dot)phys(dot)utk(dot)edu> wrote:
> I think if you encrypt MD5 before storing it into the table, then there
> is no
> way to retrieve the corresponding clear text right? since MD5 is one-way
> encryption..
yes, but normally when doing passwords, one encrypts and compares the
encrypted form. being able to decrypt stored passwords is generally
considered to be a "bad thing".
this goes back to the earliest days of Un*x, at the very least. i know it
was standard in V7, it probably was standard in V6, and likely was being
done that way even before then (V7 is where my Un*x experience starts.)
one of the raps on Windows NT & friends is that the password hashes are
easily reversable, which means that if you manage to steal them, you're
well positioned to take ownership of the system.
but this is kind of OT for a postgresql list now...
richard
--
Richard Welty rwelty(at)averillpark(dot)net
Averill Park Networking 518-573-7592
Java, PHP, PostgreSQL, Unix, Linux, IP Network Engineering, Security
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Doug McNaught | 2003-07-25 14:02:56 | Re: Solaris, Postgresql and Problems |
| Previous Message | Ron Johnson | 2003-07-25 13:48:38 | Re: Hardware selection |