Home > mailing lists

Re: Rejecting weak passwords - Mailing list pgsql-hackers

From	Mark Mielke
Subject	Re: Rejecting weak passwords
Date	October 14, 2009 19:31:23
Msg-id	4AD650F8.7010402@mark.mielke.cc Whole thread Raw
In response to	Re: Rejecting weak passwords (Peter Eisentraut <peter_e@gmx.net>)
List	pgsql-hackers

Tree view

On 10/14/2009 06:25 PM, Peter Eisentraut wrote:
> On Wed, 2009-10-14 at 18:38 +0200, Magnus Hagander wrote:
>    
>> So throwing out a wild idea that's probably just wild enough to even
>> consider, but one way to deal with the logging side of things would be
>> to deprecate/remove ALTER USER/CREATE USER with password, and add a
>> separate API call. With a separate wire protocol packet. That would
>> certainly take care of the logging part ;)
>>      
> I think that would be the correct fix.
>    

Yep. +1. If we are really so paranoid.

Cheers,
mark

-- 
Mark Mielke<mark@mielke.cc>

pgsql-hackers by date:

From: Mark Mielke
Date: 14 October 2009, 19:30:08
Subject: Re: Rejecting weak passwords

From: Tom Lane
Date: 14 October 2009, 19:37:59
Subject: Re: What does this configure warning mean?

Re: Rejecting weak passwords - Mailing list pgsql-hackers

Previous

Next