On 12/9/05, Peter Eisentraut <[EMAIL PROTECTED]> wrote: > Tom Lane wrote: > > As I said already, if the user wishes the password to be secure, he > > needs to encrypt it on the client side. > > Maybe we should provide a backslash command in psql for secure password > entry, say, \password [username]. This would then ask for the password > through a somewhat secure, unlogged channel, encrypt it, and send an > ALTER ROLE command to the server.
Letting createuser.c hash the password would be the biggest win. -- marko ---------------------------(end of broadcast)--------------------------- TIP 5: don't forget to increase your free space map settings