Re: Re: Encrypting pg_shadow passwords

> Bruce Momjian writes:
> 
> > The only reason to add double-crypt is so we can continue to use
> > /etc/passwd entries on systems that use crypt() in /etc/passwd.
> 
> On the sites that are most likely to utilize that (because they have a lot
> of users) it won't work (because they use NIS).  There are better ways to
> do that (e.g., PAM).
> 
> Also, see http://httpd.apache.org/docs/misc/FAQ.html#passwdauth

Thanks.  That was a nice description.  Seems no one is worried about
losing /etc/passwd capability so I will not worry about doing
double-crypt and concentrate on md5.  I just didn't want to remove
functionality before warning people.

--  Bruce Momjian                        |  http://candle.pha.pa.us pgman@candle.pha.pa.us               |  (610)
853-3000+  If your life is a hard drive,     |  830 Blythe Avenue +  Christ can be your backup.        |  Drexel Hill,
Pennsylvania19026