Re: MD5 Authentication

I'm blocked .......


On 06/11/2009, at 6:27, John DeSoi wrote:

>
> On Nov 5, 2009, at 12:35 PM, Raimon Fernandez wrote:
>
>> at least, my first md5 (psw+user) is the same as the pg_shadow
>> (wihtout the 'md5') ...
>>
>> should I md5 the first md5 as I get it as string (like username) or
>> byte by byte ?
>
> As far as I know, a string. But it is unclear to me what happens
> when the user or database name has non-ascii characters. The client
> encoding is not established until after authentication.
>
> I asked about that a while ago but did not get any responses.

After reading all the emails about it, I'm blocked, maybe someone can
see where the error is and shade some light on it ...

user: postgres (test values)
psw:postgres (test values)

first md5("postgrepostgres") ==> 44965A835F81EC252D83961D2CC9F3E1

salt: A6B76060


second md5("44965A835F81EC252D83961D2CC9F3E1"+"A6B76060") ==>
34F74BEF877202D4399092F97EFE8712


send to server:  header + length +
"md5"+"34F74BEF877202D4399092F97EFE8712" ==> Fatal error, password
Authentication failed for user postgres ...

thanks,

regards,


raimon