On 9/21/17 14:15, Jeff Janes wrote: > This looks good to me. Might suggest adding verifying the clients as a > specific step: > > "To upgrade an existing installation from md5 to scram-sha-256, verify > that all client software supports it, set password_encryption = > 'scram-sha-256' in postgresql.conf..."
I don't think there is a well-defined way of verifying whether all client software supports it other than making the switch described and then checking what breaks. So it's a bit of a circular process. -- Peter Eisentraut http://www.2ndQuadrant.com/ PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers