Re: md5 passwords and pg_shadow

Neil Conway wrote:
> Hi all,
> 
> Why does the password_encryption GUC variable default to false?
> 
> AFAICT there shouldn't be any issues with client compatibility -- in
> fact, I'd be inclined to rip out all support for storing cleartext
> passwords...

It is false so passwords can be handled by pre-7.2 clients.  Once you
encrypt them, you can't use passwords on pre-7.2 clients because they
don't understand the double-md5 hash required.  We will set it to true,
but when are most pre-7.2 clients gone?

--  Bruce Momjian                        |  http://candle.pha.pa.us pgman@candle.pha.pa.us               |  (610)
853-3000+  If your life is a hard drive,     |  830 Blythe Avenue +  Christ can be your backup.        |  Drexel Hill,
Pennsylvania19026