Re: WIP: SCRAM authentication
Greg Stark <stark@mit.edu>
From: Greg Stark <stark@mit.edu>
To: Heikki Linnakangas <hlinnaka@iki.fi>
Cc: Robert Haas <robertmhaas@gmail.com>,
Michael Paquier <michael.paquier@gmail.com>,
pgsql-hackers <pgsql-hackers@postgresql.org>
Date: 2015-08-08T18:43:52Z
Lists: pgsql-hackers
On Sat, Aug 8, 2015 at 6:23 PM, Heikki Linnakangas <hlinnaka@iki.fi> wrote: > Like Joe and Stephen, I actually find it highly confusing that we call the > MD5 hash an "encrypted password". The term "password verifier" is fairly > common in the specifications of authentication mechanisms. I think we should > adopt it. Speaking as someone who hasn't read the specifications I found "password verifier" surprising. I would have known what "password hash" was but I misread "verifier" to be something functional like a PAM plugin. I tend to agree we should just use terminology out of the specs though even if it's a little opaque, better one opaque piece of terminology than having to learn and translate between multiple terminologies. -- greg
Commits
-
Support SCRAM-SHA-256 authentication (RFC 5802 and 7677).
- 818fd4a67d61 10.0 landed