Re: Rejecting weak passwords
Tom Lane <tgl@sss.pgh.pa.us>
From: Tom Lane <tgl@sss.pgh.pa.us>
To: Magnus Hagander <magnus@hagander.net>
Cc: Dave Page <dpage@pgadmin.org>, Albe Laurenz <laurenz.albe@wien.gv.at>, pgsql-hackers <pgsql-hackers@postgresql.org>
Date: 2009-10-01T17:46:01Z
Lists: pgsql-hackers
Magnus Hagander <magnus@hagander.net> writes: > That said, it would still be good to have something actually *useful* > in contrib. A bit more than just comparing userid and password. > Perhaps at least being able to set the min length, and the requirement > on having >1 "character class"? +1. There's still the issue of not being able to do much with a pre-MD5'd password, though. regards, tom lane