| From: | Andrew - Supernews <andrew+nonews(at)supernews(dot)com> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Replacing MD5 hash in pg_auth... |
| Date: | 2006-04-17 11:18:36 |
| Message-ID: | slrne46ucc.222p.andrew+nonews@atlantis.supernews.net |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On 2006-04-15, "Peter van der Maas" <peter(at)abitogroup(dot)com> wrote:
> Hello,
>
> Is it correct to assume that if a user has write permission to
> \data\global\pg_auth on a Win32 machine, the superuser's MD5 hash can be
> replaced with one of a known origin in order to own the DB?
It's worse than that. If you can _read_ pg_auth, then you can log in as
any user who has an MD5 password provided that pg_hba.conf allows md5
auth - the values stored in pg_auth (and pg_shadow) are password equivalents
for the purposes of md5 auth.
--
Andrew, Supernews
http://www.supernews.com - individual and corporate NNTP services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | surabhi.ahuja | 2006-04-17 12:07:16 | Re: hard shutdown of system |
| Previous Message | Dawid Kuroczko | 2006-04-17 10:58:36 | Re: Select first ten of each category? |