Commits

DateSubjectAuthorReleases
2024-12-02 Deprecate MD5 passwords. Nathan Bossart 18.0
2024-10-07 Restrict password hash length. Nathan Bossart 18.0
2023-11-17 Allow tests to pass in OpenSSL FIPS mode (rest) Peter Eisentraut 17.0
2023-03-27 Make SCRAM iteration count configurable Daniel Gustafsson 16.0
2020-06-10 Change default of password_encryption to scram-sha-256 Peter Eisentraut 14.0
2019-10-12 Fix use of term "verifier" Peter Eisentraut 13.0
2019-06-17 Fix buffer overflow when parsing SCRAM verifiers in backend Michael Paquier 10.9
2019-06-17 Fix buffer overflow when parsing SCRAM verifiers in backend Michael Paquier 11.4
2019-06-17 Fix buffer overflow when parsing SCRAM verifiers in backend Michael Paquier 12.0
2019-04-23 Fix detection of passwords hashed with MD5 or SCRAM-SHA-256 Michael Paquier 10.8
2019-04-23 Fix detection of passwords hashed with MD5 or SCRAM-SHA-256 Michael Paquier 11.3
2019-04-23 Fix detection of passwords hashed with MD5 or SCRAM-SHA-256 Michael Paquier 12.0
2017-08-07 Don't allow logging in with empty password. Heikki Linnakangas 10.0
2017-05-08 Remove support for password_encryption='off' / 'plain'. Heikki Linnakangas 10.0
2017-05-05 Make SCRAM salts and nonces longer. Heikki Linnakangas 10.0
2017-04-21 Change the on-disk format of SCRAM verifiers to conform to RFC 5803. Heikki Linnakangas 10.0
2017-04-18 Rename "scram" to "scram-sha-256" in pg_hba.conf and password_encryption. Heikki Linnakangas 10.0
2017-03-07 Add regression tests for passwords. Heikki Linnakangas 10.0