Hi, I have been checking the security of postgresql password and md5 transmission between two computers in a lan (client and server) and I haven't been able to capture the user and password. It's said that when the transmission is in plain text then there is the possibility of a sniffer attack, but I get the same resoults when I try with the "password" and the "md5" systems for postgresql.
When sniffing a pop connection I can get the user and the password. Can be done the same in postgresql with plain text authentication? Thanks. Mike
