Re: [HACKERS] TODO list updated
Marc G. Fournier <scrappy@hub.org>
From: The Hermit Hacker <scrappy@hub.org>
To: Bruce Momjian <pgman@candle.pha.pa.us>
Cc: Peter Eisentraut <peter_e@gmx.net>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2000-01-13T01:02:38Z
Lists: pgsql-hackers
On Wed, 12 Jan 2000, Bruce Momjian wrote:
> OK, now we have to decide if we are going to require this be done as
> part of initdb. I am inclined to say the user _has_ to be _prompted_ in
> a secure matter for the password as part of initdb. Have a command-line
> switch for the password is not secure, IMHO, though it is better than
> nothing.
If we do a 'CREATE USER <user> WITH PASSWORD <pass>', its no more secure
then using a command line switch for password ...
Marc G. Fournier ICQ#7615664 IRC Nick: Scrappy
Systems Administrator @ hub.org
primary: scrappy@hub.org secondary: scrappy@{freebsd|postgresql}.org