Re: MD5 Authentication

On Nov 5, 2009, at 12:35 PM, Raimon Fernandez wrote:

> at least, my first md5 (psw+user) is the same as the pg_shadow
> (wihtout the 'md5') ...
>
> should I md5 the first md5 as I get it as string (like username) or
> byte by byte ?

As far as I know, a string. But it is unclear to me what happens when
the user or database name has non-ascii characters. The client
encoding is not established until after authentication.

I asked about that a while ago but did not get any responses.

http://archives.postgresql.org/pgsql-general/2008-12/msg00808.php



John DeSoi, Ph.D.