Re: [HACKERS] TODO list updated
Marc G. Fournier <scrappy@hub.org>
From: The Hermit Hacker <scrappy@hub.org>
To: Bruce Momjian <pgman@candle.pha.pa.us>
Cc: Peter Eisentraut <peter_e@gmx.net>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2000-01-13T01:54:02Z
Lists: pgsql-hackers
On Wed, 12 Jan 2000, Bruce Momjian wrote:
> > On Wed, 12 Jan 2000, Bruce Momjian wrote:
> >
> > > OK, now we have to decide if we are going to require this be done as
> > > part of initdb. I am inclined to say the user _has_ to be _prompted_ in
> > > a secure matter for the password as part of initdb. Have a command-line
> > > switch for the password is not secure, IMHO, though it is better than
> > > nothing.
> >
> > If we do a 'CREATE USER <user> WITH PASSWORD <pass>', its no more secure
> > then using a command line switch for password ...
>
> Why is that? ps shows command args, righ?
Point. You won me over :)
Marc G. Fournier ICQ#7615664 IRC Nick: Scrappy
Systems Administrator @ hub.org
primary: scrappy@hub.org secondary: scrappy@{freebsd|postgresql}.org