Re: [BUGS] user authentication crash by Erik Luke

Tom Lane wrote: >Hmm.  I can see how a linefeed in a password would create a problem (it >breaks the line-oriented
formattingof the pg_pwd file). 
 
... >In any case it seems like it'd be a good idea to forbid nonprinting >characters in passwords.  Comments anyone?

That sounds too restrictive; allowing non-printing characters should
improve password security.  Why not simply exclude linefeed and
carriage return?  (And possibly ctrl-Q and ctrl-S as well, in case there
is still anyone running a terminal with XON/XOFF flow control.)

-- 
Oliver Elphick                                Oliver.Elphick@lfix.co.uk
Isle of Wight                              http://www.lfix.co.uk/oliver
GPG: 1024D/3E1D0C1C: CA12 09E0 E8D5 8870 5839  932A 614D 4C34 3E1D 0C1C
    "But they that wait upon the LORD shall renew their      strength; they shall mount up with wings as eagles;
theyshall run, and not be weary; and they shall walk,     and not faint."            Isaiah 40:31