| From: | Bruce Momjian <bruce(at)momjian(dot)us> |
|---|---|
| To: | Jelte Fennema-Nio <postgres(at)jeltef(dot)nl> |
| Cc: | Nathan Bossart <nathandbossart(at)gmail(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: sunsetting md5 password support |
| Date: | 2024-10-10 21:03:37 |
| Message-ID: | ZwhBKeNztHPj0Rzg@momjian.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Wed, Oct 9, 2024 at 10:30:15PM +0200, Jelte Fennema-Nio wrote:
> On Wed, 9 Oct 2024 at 21:55, Nathan Bossart <nathandbossart(at)gmail(dot)com> wrote:
> > In this message, I propose a multi-year, incremental approach to remove MD5
> > password support from Postgres.
>
> +many for the general idea
>
> I think it makes sense to also remove the "password" authentication
> option while we're at it (this can currently be used with SCRAM stored
> passwords).
I remember "password" as being recommended for SSL connections where
there is no risk of the password contents being seen.
--
Bruce Momjian <bruce(at)momjian(dot)us> https://momjian.us
EDB https://enterprisedb.com
When a patient asks the doctor, "Am I going to die?", he means
"Am I going to die soon?"
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2024-10-10 21:04:46 | Re: Converting tab-complete.c's else-if chain to a switch |
| Previous Message | David E. Wheeler | 2024-10-10 20:35:42 | Re: RFC: Additional Directory for Extensions |