passwords

Started by mixoabout 23 years ago2 messagesgeneral

mixo@beth.uniforum.org.za

about 23 years ago

I have been playing around with passwords on 7.2.3. So far what I
have noticed is that password are either sent via tcp/ip as clear text ()
or, encrypted using "crypt" and "md5". Are the anymore more encryption
methods suppored like "sha"? And, when passwords are stored as encrypted,
what is used to encrypt them? Does "pg_passwd" app use the same encryption
as that used when the passwords are store internally?

Bruce Momjian

bruce@momjian.us

about 23 years ago

In reply to: mixo (#1)

Re: passwords

mixo wrote:

I have been playing around with passwords on 7.2.3. So far what I
have noticed is that password are either sent via tcp/ip as clear text ()
or, encrypted using "crypt" and "md5". Are the anymore more encryption
methods suppored like "sha"? And, when passwords are stored as encrypted,
what is used to encrypt them? Does "pg_passwd" app use the same encryption
as that used when the passwords are store internally?

No, only those three, and once you store them as encrypted, you can only
use MD5 and password, crypt doesn't work. In 7.3, encrypted passwords
are stored by default.

-- 
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman@candle.pha.pa.us               |  (610) 359-1001
  +  If your life is a hard drive,     |  13 Roberts Road
  +  Christ can be your backup.        |  Newtown Square, Pennsylvania 19073