Re: Bug #756: suggestion: file with password instead of $PGPASSWORD

Bruce Momjian <pgman@candle.pha.pa.us>

From: Bruce Momjian <pgman@candle.pha.pa.us>
To: pg@wojtus.net, pgsql-bugs@postgresql.org
Date: 2002-09-04T17:05:44Z
Lists: pgsql-bugs
This functionality will be in 7.3, due out in a few months.

---------------------------------------------------------------------------

pgsql-bugs@postgresql.org wrote:
> Wojciech Scigala (pg@wojtus.net) reports a bug with a severity of 4
> The lower the number the more severe it is.
> 
> Short Description
> suggestion: file with password instead of $PGPASSWORD
> 
> Long Description
> This is not a bug-report in fact, but a suggestion of a feature.
> (I couldn't find an separate email for suggestions and ideas).
> As you know, many people have trouble keeping both secure (passworded) access to PG databased while allowing some unattended access for them, for example for backing up.
> Enviroment variable $PGPASSWORD is very useful here, but sensitive data should not be passed via enviroment. The better way to do it is to provide a name of file which contains the password. The file's access rights (if set properly) will provide necessary security in an easy way. And that's what I'm suggesting - an introdution of new variable, say $PGPASSWORD_FILE which will point to a file with password.
> 
> Sample Code
> 
> 
> No file was uploaded with this report
> 
> 
> ---------------------------(end of broadcast)---------------------------
> TIP 6: Have you searched our list archives?
> 
> http://archives.postgresql.org
> 

-- 
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman@candle.pha.pa.us               |  (610) 359-1001
  +  If your life is a hard drive,     |  13 Roberts Road
  +  Christ can be your backup.        |  Newtown Square, Pennsylvania 19073