Home > mailing lists

Re: Proposal obfuscate password in pg logs - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Proposal obfuscate password in pg logs
Date	December 2, 2023 21:04:10
Msg-id	441005.1701551050@sss.pgh.pa.us Whole thread Raw
In response to	Proposal obfuscate password in pg logs (Guanqun Yang <gy2025@nyu.edu>)
List	pgsql-hackers

Tree view

Guanqun Yang <gy2025@nyu.edu> writes:
> We notice Postgres logs, pg_stat_statements and pg_stat_activity will
> record passwords when using "CREATE" statement to create user with
> password. Can we provide users with an option to obfuscate those passwords?

See the many, many prior discussions of this idea.
The short answer is that you're better off securing your logs.

            regards, tom lane

pgsql-hackers by date:

From: Rafael Thofehrn Castro
Date: 02 December 2023, 20:56:56
Subject: Re: Proposal: In-flight explain logging

From: Nathan Bossart
Date: 02 December 2023, 21:53:20
Subject: Re: Emitting JSON to file using COPY TO

Re: Proposal obfuscate password in pg logs - Mailing list pgsql-hackers

Previous

Next