Re: Encrypting pg_shadow passwords

On Fri, 15 Jun 2001, Tom Lane wrote:

> Vince Vielhaber <vev@michvhf.com> writes:
> >> More to the point, how does the postmaster know that it's now dealing
> >> with encrypted passwords and must use the double-salt auth method?
>
> > The first three characters are md5 in the code I sent Bruce.
>
> Uh ... so if I use a password that starts with "md5", it breaks?

yup.

> Seems like adding an additional column to pg_shadow would be a better
> technique.

I agree but that was frowned upon for reasons I don't recall now.

Vince.
-- 
==========================================================================
Vince Vielhaber -- KA8CSH    email: vev@michvhf.com    http://www.pop4.net        56K Nationwide Dialup from $16.00/mo
atPop4 Networking       Online Campground Directory    http://www.camping-usa.com      Online Giftshop Superstore
http://www.cloudninegifts.com
==========================================================================