Home > mailing lists

Re: User functions for building SCRAM secrets - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: User functions for building SCRAM secrets
Date	April 13, 2023 23:14:07
Msg-id	ZDiMv+R3a+q/lpZA@paquier.xyz Whole thread Raw
In response to	Re: User functions for building SCRAM secrets (Magnus Hagander <magnus@hagander.net>)
Responses	Re: User functions for building SCRAM secrets
List	pgsql-hackers

Tree view

On Tue, Apr 11, 2023 at 11:27:17AM +0200, Magnus Hagander wrote:
> Having the function always generate a random salt seems more
> reasonable though, and would perhaps be something that helps in some
> of the cases? It won't help with the password policy one, as it's too
> secure for that, but it would help with the postgres-is-the-client
> one?

While this is still hot..  Would it make sense to have a
scram_salt_length GUC to control the length of the salt used when
generating the SCRAM secret?
--
Michael

Attachment

signature.asc

pgsql-hackers by date:

From: Daniel Gustafsson
Date: 13 April 2023, 23:09:55
Subject: Re: [PATCH] Add `verify-system` sslmode to use system CA pool for server cert

From: Tom Lane
Date: 13 April 2023, 23:27:45
Subject: Re: [PATCH] Add `verify-system` sslmode to use system CA pool for server cert

Re: User functions for building SCRAM secrets - Mailing list pgsql-hackers

Attachment

Previous

Next