| From: | "hans(dot)wolters" <hans(dot)wolters(at)protonmail(dot)com> |
|---|---|
| To: | "pgsql-bugs(at)lists(dot)postgresql(dot)org" <pgsql-bugs(at)lists(dot)postgresql(dot)org> |
| Subject: | password saved in .psql_history |
| Date: | 2020-08-25 20:29:54 |
| Message-ID: | K9Qpnt34zosrh-Ihn8gvA90qoOhDWIb_XcC3i1_FE0dZ2mKiC9hfhtyRJZWzr7EJzHAKy9dqhXNJiyoZxDS2moNCL3PzU018V7jeTPG_1Bg=@protonmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Dear all,
I noticed the password of a used is stored in the history of the psql user (postgres in my case). This happens when alter user <user> with password '<password>' is used.
I suppose it is not a real bug but it might be handy to filter that for things like a history listing.
Best regards,
Hans Wolters
Sent with ProtonMail Secure Email.
-----BEGIN PGP SIGNATURE-----
Version: ProtonMail
wsBzBAEBCAAGBQJfRXSsACEJEAG7dXauaxBGFiEEDDLxCO8Yjfa/PGZNAbt1
dq5rEEYQIAgAlfySOp7MWvK9G3NeOL3No0JcHwpZ9l5WGDU+59S+Cx55YEul
CXfIzjFw9uBvd3RO/GZsKnlyz5iuY2XE/XvTz3skxlcam18wA2eybB3AWhNc
LqaJw58lNoVPLofQjbgnNcMjw9qOioa5b+syJaOHh+BJVIKquASTDUcOckF4
NE+YKeGKnu4nP9RLeojkvtWdc0CmJN58BP6lLmOiLSwIDj4LmWT8Jrdnbdwj
ggM9UFPkn+AjBjJVYSrZlGVn2WL04rpPkjzGlea8hkLu2mqZFUDSd3aVN5Fy
4bvolUnc9iXFeC8k0O+odHXpR/uWhdApfPpU4LtuAY+yZc1uzxHI3g==
=JsgG
-----END PGP SIGNATURE-----
| Attachment | Content-Type | Size |
|---|---|---|
| publickey - hans.wolters@protonmail.com - 0x0C32F108.asc | application/pgp-keys | 1.8 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alvaro Herrera | 2020-08-25 21:39:46 | Re: password saved in .psql_history |
| Previous Message | PG Bug reporting form | 2020-08-25 20:07:28 | BUG #16592: websearch_to_tsquery() returns queries that don't result in expected matches |