Participants
Daniel Westermann (DWE)
Daniel Westermann (DWE)
Magnus Hagander
Magnus Hagander
Jonathan S. Katz
Jonathan S. Katz
Attachments
Download Latest Patchset
+2-2
Show all attachments
Thread Outline
#1...#3
Daniel Westermann (DWE)Magnus HaganderJonathan S. Katz
May 31, 2022
#1Daniel Westermann (DWE)Daniel Westermann (DWE)
May 31, 2022
#2Magnus HaganderMagnus Haganderto Daniel Westermann (DWE) (#1)
May 31, 2022
#3Jonathan S. KatzJonathan S. Katzto Magnus Hagander (#2)
May 31, 2022
#4Daniel Westermann (DWE)Daniel Westermann (DWE)to Jonathan S. Katz (#3)
May 31, 2022
#5Magnus HaganderMagnus Haganderto Jonathan S. Katz (#3)
May 31, 2022

Should we really recommend "-A md5 or -A password"?

Started by Daniel Westermann (DWE)almost 4 years ago5 messagesdocs
Jump to latest
#1Daniel Westermann (DWE)
Daniel Westermann (DWE)
daniel.westermann@dbi-services.com

Hi,

I just came across this:
"Also, specify -A md5 or -A password so that the default trust authentication mode is not used;"
https://www.postgresql.org/docs/current/creating-cluster.html

Shouldn't we change that to "-A scram-sha-256" ?

Regards
Daniel

#2Magnus Hagander
Magnus Hagander
magnus@hagander.net
In reply to: Daniel Westermann (DWE) (#1)
Re: Should we really recommend "-A md5 or -A password"?

On Tue, May 31, 2022 at 2:29 PM Daniel Westermann (DWE) <
daniel.westermann@dbi-services.com> wrote:

Hi,

I just came across this:
"Also, specify -A md5 or -A password so that the default trust
authentication mode is not used;"
https://www.postgresql.org/docs/current/creating-cluster.html

Shouldn't we change that to "-A scram-sha-256" ?

Yes I think we absolutely should!

--
Magnus Hagander
Me: https://www.hagander.net/ <http://www.hagander.net/&gt;
Work: https://www.redpill-linpro.com/ <http://www.redpill-linpro.com/&gt;

#3Jonathan S. Katz
Jonathan S. Katz
jkatz@postgresql.org
In reply to: Magnus Hagander (#2)
Re: Should we really recommend "-A md5 or -A password"?

On 5/31/22 8:35 AM, Magnus Hagander wrote:

On Tue, May 31, 2022 at 2:29 PM Daniel Westermann (DWE)
<daniel.westermann@dbi-services.com
<mailto:daniel.westermann@dbi-services.com>> wrote:

Hi,

I just came across this:
"Also, specify -A md5 or -A password so that the default trust
authentication mode is not used;"
https://www.postgresql.org/docs/current/creating-cluster.html
<https://www.postgresql.org/docs/current/creating-cluster.html&gt;

Shouldn't we change that to "-A scram-sha-256" ?

Yes I think we absolutely should!

+1

Proposed patch attached. This also removes "-A password" from that
sentence as well.

Jonathan

Attachments:

initdb-auth-recommendation.patchtext/plain; charset=UTF-8; name=initdb-auth-recommendation.patchDownload+2-2
#4Daniel Westermann (DWE)
Daniel Westermann (DWE)
daniel.westermann@dbi-services.com
In reply to: Jonathan S. Katz (#3)
Re: Should we really recommend "-A md5 or -A password"?

Yes I think we absolutely should!

+1
Proposed patch attached. This also removes "-A password" from that
sentence as well.

You've been faster than me :)
Looks good.

Regards
Daniel

Import Notes
Resolved by subject fallback
#5Magnus Hagander
Magnus Hagander
magnus@hagander.net
In reply to: Jonathan S. Katz (#3)
Re: Should we really recommend "-A md5 or -A password"?

On Tue, May 31, 2022 at 3:57 PM Jonathan S. Katz <jkatz@postgresql.org>
wrote:

On 5/31/22 8:35 AM, Magnus Hagander wrote:

On Tue, May 31, 2022 at 2:29 PM Daniel Westermann (DWE)
<daniel.westermann@dbi-services.com
<mailto:daniel.westermann@dbi-services.com>> wrote:

Hi,

I just came across this:
"Also, specify -A md5 or -A password so that the default trust
authentication mode is not used;"
https://www.postgresql.org/docs/current/creating-cluster.html
<https://www.postgresql.org/docs/current/creating-cluster.html&gt;

Shouldn't we change that to "-A scram-sha-256" ?

Yes I think we absolutely should!

+1

Proposed patch attached. This also removes "-A password" from that
sentence as well.

Applied and backpatched to 14. Thanks!

--
Magnus Hagander
Me: https://www.hagander.net/ <http://www.hagander.net/&gt;
Work: https://www.redpill-linpro.com/ <http://www.redpill-linpro.com/&gt;

← Back to Topics