Re: Bug #756: suggestion: file with password instead of

Rod Taylor <rbt@zort.ca>

From: Rod Taylor <rbt@zort.ca>
To: pg@wojtus.net
Cc: pgsql-bugs@postgresql.org
Date: 2002-09-04T16:48:01Z
Lists: pgsql-bugs
This item:
Add file to hold passwords using PGPASSWORDFILE environment variable

Has been completed, and will be a part of the 7.3 release.

Thanks,
	Rod

On Wed, 2002-09-04 at 11:54, pgsql-bugs@postgresql.org wrote:
> Wojciech Scigala (pg@wojtus.net) reports a bug with a severity of 4
> The lower the number the more severe it is.
> 
> Short Description
> suggestion: file with password instead of $PGPASSWORD
> 
> Long Description
> This is not a bug-report in fact, but a suggestion of a feature.
> (I couldn't find an separate email for suggestions and ideas).
> As you know, many people have trouble keeping both secure (passworded) access to PG databased while allowing some unattended access for them, for example for backing up.
> Enviroment variable $PGPASSWORD is very useful here, but sensitive data should not be passed via enviroment. The better way to do it is to provide a name of file which contains the password. The file's access rights (if set properly) will provide necessary security in an easy way. And that's what I'm suggesting - an introdution of new variable, say $PGPASSWORD_FILE which will point to a file with password.
> 
> Sample Code
> 
> 
> No file was uploaded with this report
> 
> 
> ---------------------------(end of broadcast)---------------------------
> TIP 6: Have you searched our list archives?
> 
> http://archives.postgresql.org
>