Re: [HACKERS] Solution to the pg_user passwd problem !?? (c)

Goran Thyni <goran@bildbasen.se>

From: Goran Thyni <goran@bildbasen.se>
To: brett@work.chicken.org
Cc: ocie@paracel.com, maillist@candle.pha.pa.us, scrappy@hub.org, jwieck@debis.com, Andreas.Zeugswetter@telecom.at, pgsql-hackers@hub.org
Date: 1998-02-26T16:35:18Z
Lists: pgsql-hackers
>   What about a public/private key mechanism, like ssh?

Yes, just use ssh as-is and run psql etc in a ssh tunnel
when running over insecure nets.

Making cryptography part of pgsql is not good idea for two reasons:
1. It is bloat
2. It make us targets of legal-problems (US-export-control etc).

IMHO, even Kerberous should be removed.

info about ssh is available at:

http://www.cs.hut.fi/ssh/ free version
http://www.ssh.fi/ commercial (+mac/windows) versions

      regards,
-- 
---------------------------------------------
Gran Thyni, sysadm, JMS Bildbasen, Kiruna