Re: Open 7.3 items
| От | Marc G. Fournier |
|---|---|
| Тема | Re: Open 7.3 items |
| Дата | |
| Msg-id | 20020731225017.Q83339-100000@mail1.hub.org обсуждение исходный текст |
| Ответ на | Re: Open 7.3 items (Bruce Momjian <pgman@candle.pha.pa.us>) |
| Ответы |
Re: Open 7.3 items
|
| Список | pgsql-hackers |
On Wed, 31 Jul 2002, Bruce Momjian wrote: > Ron Snyder wrote: > > > > > > Yes, is that your pg_hba.conf line? 'password' is insecure over > > > networks you don't trust. > > > > Yes, we're using 'password password' in our pg_hba.conf file. I trust my > > network (so far). > > That is another major limitation to secondary password files. In fact, > md5 will not even work because we assume the username is used as the > salt for the md5 encryption. We don't store the salt as part of the > encrypted password like crypt does. > > This was another reason secondary password files were discouraged. discouraged?? where? :)
В списке pgsql-hackers по дате отправления: