Re: Password identifiers, protocol aging and SCRAM protocol
Magnus Hagander <magnus@hagander.net>
From: Magnus Hagander <magnus@hagander.net>
To: Michael Paquier <michael.paquier@gmail.com>
Cc: Robert Haas <robertmhaas@gmail.com>, Stephen Frost <sfrost@snowman.net>, David Steele <david@pgmasters.net>, PostgreSQL mailing lists <pgsql-hackers@postgresql.org>,
Valery Popov <v.popov@postgrespro.ru>
Date: 2016-03-22T15:41:37Z
Lists: pgsql-hackers
On Tue, Mar 22, 2016 at 2:48 PM, Michael Paquier <michael.paquier@gmail.com> wrote: > On Mon, Mar 21, 2016 at 11:07 PM, Robert Haas <robertmhaas@gmail.com> > wrote: > > Well, I said before and I'll say again that I don't like the idea of > > multiple password verifiers. I think that's an accident waiting to > > happen, and I'm not prepared to put in the amount of time and energy > > that it would take to get that feature committed despite not wanting > > it myself, or for being responsible for it afterwards. I'd prefer we > > didn't do it at all, although I'm not going to dig in my heels. I > > might be willing to deal with SCRAM itself, but this whole area is not > > my strongest suit. So ideally some other committer would be willing > > to pick this up. > > I won't bet my hand on that. > In principle I'd be happy to look at it, but I doubt that I will have enough time to get it done within this CF unfortunately. Thus I'd rather not commit to doing it.. It kind of fell off my radar too long ago, as I was originally planning to look at it back in the autumn, but failed. So basically, if somebody else has the cycles to do it in time for 9.6, please do. I have marked the patch as returned with feedback. > > Yeah, unfortunately I think that's probably right. Let's focus on things that have a better chance of making it. -- Magnus Hagander Me: http://www.hagander.net/ Work: http://www.redpill-linpro.com/
Commits
-
Support SCRAM-SHA-256 authentication (RFC 5802 and 7677).
- 818fd4a67d61 10.0 landed
-
Refactor SHA2 functions and move them to src/common/.
- 273c458a2b3a 10.0 landed
-
Replace isMD5() with a more future-proof way to check if pw is encrypted.
- dbd69118c05d 10.0 landed
-
Remove bogus notice that older clients might not work with MD5 passwords.
- 7e3ae5455948 9.2.20 landed
- 470af1f41c8b 9.3.16 landed
- ada2cdb61015 9.4.11 landed
- 65a7f190b253 9.5.6 landed
- 7546c135dc30 9.6.2 landed
- 31c54096a18f 10.0 landed
-
Refactor the code for verifying user's password.
- e7f051b8f9a6 10.0 landed
-
Replace PostmasterRandom() with a stronger source, second attempt.
- fe0a0b5993df 10.0 landed
-
Remove support for (insecure) crypt authentication.
- 53a5026b5cb3 8.4.0 cited