Re: sunsetting md5 password support

Greg Sabino Mullane <htamfids@gmail.com>

From: Greg Sabino Mullane <htamfids@gmail.com>
To: Nathan Bossart <nathandbossart@gmail.com>
Cc: Jim Nasby <jnasby@upgrade.com>, Andrew Dunstan <andrew@dunslane.net>, Tom Lane <tgl@sss.pgh.pa.us>, Heikki Linnakangas <hlinnaka@iki.fi>, pgsql-hackers <pgsql-hackers@postgresql.org>
Date: 2024-11-20T00:29:27Z
Lists: pgsql-hackers
I just took a fresh look at / compiled this patch, and it all works as
advertised. My one minor nit is this hint:

HINT:  Refer to the PostgreSQL documentation for details about migrating to
another password type.

We don't really have that in the docs, as near as I can tell, the closest
is 20.5 which says "make all users set new passwords, and change the
authentication method specifications in pg_hba.conf to scram-sha-256."
Maybe that's enough?

Cheers,
Greg

Commits

  1. Deprecate MD5 passwords.