| From: | Vince Vielhaber <vev(at)michvhf(dot)com> |
|---|---|
| To: | pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | RE: Security WAS RE: [HACKERS] Updated TODO list |
| Date: | 1999-07-16 14:24:26 |
| Message-ID: | XFMail.990716102426.vev@michvhf.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 16-Jul-99 Ansley, Michael wrote:
> I think the point is that you wouldn't, but the most important part is to
> get it off the wire. Let someone do that first, and then worry about what
> the administrator can see. One would hope that your administrator is more
> trustworthy than joe hacker out on the network.
>
>
>>> Why would you want to make it visible to anyone?
>>>
>>> Vince.
>
> As a user, I would be extremely concerned if I knew that my password was
> fairly transparent on the network, but less so if I knew that the wire was
> safe, although my admin could see it. First prize would, of course, be
> total secrecy.
But you can use something like ssh to take care of the wire. It's alot
better than the method used by browsers for login and password.
Vince.
--
==========================================================================
Vince Vielhaber -- KA8CSH email: vev(at)michvhf(dot)com flame-mail: /dev/null
# include <std/disclaimers.h> TEAM-OS2
Online Campground Directory http://www.camping-usa.com
Online Giftshop Superstore http://www.cloudninegifts.com
==========================================================================
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 1999-07-16 14:35:32 | Re: [HACKERS] Counting bool flags in a complex query |
| Previous Message | Tom Lane | 1999-07-16 14:14:08 | Re: [HACKERS] Interesting index/LIKE/join slowness problems |