Re: [HACKERS] TODO list updated

Marc G. Fournier <scrappy@hub.org>

From: The Hermit Hacker <scrappy@hub.org>
To: Bruce Momjian <pgman@candle.pha.pa.us>
Cc: Peter Eisentraut <peter_e@gmx.net>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2000-01-13T01:54:02Z
Lists: pgsql-hackers
On Wed, 12 Jan 2000, Bruce Momjian wrote:

> > On Wed, 12 Jan 2000, Bruce Momjian wrote:
> > 
> > > OK, now we have to decide if we are going to require this be done as
> > > part of initdb.  I am inclined to say the user _has_ to be _prompted_ in
> > > a secure matter for the password as part of initdb.  Have a command-line
> > > switch for the password is not secure, IMHO, though it is better than
> > > nothing.
> > 
> > If we do a 'CREATE USER <user> WITH PASSWORD <pass>', its no more secure
> > then using a command line switch for password ... 
> 
> Why is that?  ps shows command args, righ?

Point.  You won me over :)

Marc G. Fournier                   ICQ#7615664               IRC Nick: Scrappy
Systems Administrator @ hub.org 
primary: scrappy@hub.org           secondary: scrappy@{freebsd|postgresql}.org