Re: Successor of MD5 authentication, let's use SCRAM
| От | Greg Stark |
|---|---|
| Тема | Re: Successor of MD5 authentication, let's use SCRAM |
| Дата | |
| Msg-id | CAM-w4HOP8Wv8WEP5vYHR13c=Z95w_i1k136i=Na8DjvNRd_BhQ@mail.gmail.com обсуждение исходный текст |
| Ответ на | Re: Successor of MD5 authentication, let's use SCRAM (Robert Haas <robertmhaas@gmail.com>) |
| Список | pgsql-hackers |
On Fri, Sep 13, 2013 at 5:31 PM, Robert Haas <robertmhaas@gmail.com> wrote: > On Thu, Sep 12, 2013 at 11:33 AM, Magnus Hagander <magnus@hagander.net> wrote: >> Well, undocumented and OpenSSL tend to go hand in hand a lot. Or, >> well, it might be documented, but not in a useful way. I wouldn't >> count on it. > > The OpenSSL code is some of the worst-formatted spaghetti code I've > ever seen, and the reason I know that is because whenever I try to do > anything with OpenSSL I generally end up having to read it, precisely > because, as you say, the documentation is extremely incomplete. I > hate to be critical of other projects, but everything I've ever done > with OpenSSL has been difficult, and I really think we should try to > get less dependent on it rather than more. I have nothing exciting to add but I happened to be reading this old thread and thought the above post was relevant again these days. -- greg
В списке pgsql-hackers по дате отправления: