Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-27 Thread Nelson Green
On Fri, Sep 26, 2014 at 6:40 PM, John R Pierce wrote: > On 9/26/2014 4:32 PM, Nelson Green wrote: > >> >> Thanks Bosco, DrakoRod, and Adrian. Between the three of you it became >> obvious >> that I was doing something wrong. And yes, in the end you were right. >> Doubling >> the quote does indeed

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-27 Thread Nelson Green
On Fri, Sep 26, 2014 at 6:46 PM, Adrian Klaver wrote: > On 09/26/2014 04:32 PM, Nelson Green wrote: > >> On Fri, Sep 26, 2014 at 5:51 PM, Adrian Klaver >> > > Doubling the quote seems to work here. >> >> >> Thanks Bosco, DrakoRod, and Adrian. Between the three of you it became >> obvious >>

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-26 Thread Gavin Flower
On 27/09/14 11:56, John R Pierce wrote: On 9/26/2014 4:40 PM, John R Pierce wrote: I'd consider using `mkpasswd -l 15 -s 0` just to avoid any such problems. 15 random alphanumerics is already plenty complex, 62^15th possible combinations, without needing to mix in special characters. $ mkp

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-26 Thread John R Pierce
On 9/26/2014 4:40 PM, John R Pierce wrote: I'd consider using `mkpasswd -l 15 -s 0` just to avoid any such problems. 15 random alphanumerics is already plenty complex, 62^15th possible combinations, without needing to mix in special characters. $ mkpasswd -l 15 -s 0 eec1kj7ZsthlYmh btw, t

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-26 Thread Adrian Klaver
On 09/26/2014 04:32 PM, Nelson Green wrote: On Fri, Sep 26, 2014 at 5:51 PM, Adrian Klaver Doubling the quote seems to work here. Thanks Bosco, DrakoRod, and Adrian. Between the three of you it became obvious that I was doing something wrong. And yes, in the end you were right. Doubling

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-26 Thread John R Pierce
On 9/26/2014 4:32 PM, Nelson Green wrote: Thanks Bosco, DrakoRod, and Adrian. Between the three of you it became obvious that I was doing something wrong. And yes, in the end you were right. Doubling the quote does indeed work. It turns out it this particular password also had a \ in it, and

Re: [GENERAL] password in recovery.conf [SOLVED]

2014-09-26 Thread Nelson Green
On Fri, Sep 26, 2014 at 5:51 PM, Adrian Klaver wrote: > On 09/26/2014 12:58 PM, Nelson Green wrote: > >> Hello all, >> >> I am setting up a streaming replication stand-by, and the replication >> role password has a single quote in it. I am unable to properly >> reference the password in the conni

Re: [GENERAL] password in recovery.conf

2014-09-26 Thread Adrian Klaver
On 09/26/2014 12:58 PM, Nelson Green wrote: Hello all, I am setting up a streaming replication stand-by, and the replication role password has a single quote in it. I am unable to properly reference the password in the conninfo setting of recovery.conf so it will authenticate to the master. Doub

Re: [GENERAL] password in recovery.conf

2014-09-26 Thread DrakoRod
Hi! Have you tried escape the Single or Double quote? Maybe this information can help you: http://stackoverflow.com/questions/12316953/insert-varchar-with-single-quotes-in-postgresql http://www.postgresql.org/docs/9.1/static/sql-syntax-lexical.html Best Regards! - Dame un poco de fe,

Re: [GENERAL] password in recovery.conf

2014-09-26 Thread Bosco Rama
On 09/26/14 12:58, Nelson Green wrote: > > I am setting up a streaming replication stand-by, and the replication > role password has a single quote in it. I am unable to properly > reference the password in the conninfo setting of recovery.conf so it > will authenticate to the master. Doubling the

[GENERAL] password in recovery.conf

2014-09-26 Thread Nelson Green
Hello all, I am setting up a streaming replication stand-by, and the replication role password has a single quote in it. I am unable to properly reference the password in the conninfo setting of recovery.conf so it will authenticate to the master. Doubling the quote gives me a syntax error, and es

Re: [GENERAL] password-less access, without using pg_hba

2014-02-08 Thread Reece Hart
On Fri, Feb 7, 2014 at 8:27 AM, Steve Crawford < scrawf...@pinpointresearch.com> wrote: > Ignoring the scary security issues > One of the niceties of an RDS deployment is that I don't care much about the security issues: The machine is not in our VPC, there's only public data on it, and I pre

Re: [GENERAL] password-less access, without using pg_hba

2014-02-07 Thread Steve Crawford
On 02/06/2014 06:07 PM, Reece Hart wrote: I'd like to provide public access, without a password, to a database hosted on Amazon RDS. I'm familiar with using pg_hba.conf to enable trust (no) authentication for a user. pg_hba.conf is not available to DBAs on RDS. Is there any other way to achi

Re: [GENERAL] password-less access, without using pg_hba

2014-02-06 Thread Tatsuo Ishii
> On Thu, Feb 6, 2014 at 6:37 PM, David Johnston wrote: > >> Doubtful. >> > > Yeah, that's what I had assumed too. > > The question is motivated entirely by what I think would make it easier for > users. In principle it's not difficult to give people a password (as I do > now), but in practice

Re: [GENERAL] password-less access, without using pg_hba

2014-02-06 Thread David Johnston
Reece Hart wrote > On Thu, Feb 6, 2014 at 6:37 PM, David Johnston < > polobo@ > > wrote: > >> Doubtful. >> > > Yeah, that's what I had assumed too. > > The question is motivated entirely by what I think would make it easier > for > users. In principle it's not difficult to give people a passwo

Re: [GENERAL] password-less access, without using pg_hba

2014-02-06 Thread Reece Hart
On Thu, Feb 6, 2014 at 6:37 PM, David Johnston wrote: > Doubtful. > Yeah, that's what I had assumed too. The question is motivated entirely by what I think would make it easier for users. In principle it's not difficult to give people a password (as I do now), but in practice it's a barrier tha

[GENERAL] password-less access, without using pg_hba

2014-02-06 Thread Reece Hart
I'd like to provide public access, without a password, to a database hosted on Amazon RDS. I'm familiar with using pg_hba.conf to enable trust (no) authentication for a user. pg_hba.conf is not available to DBAs on RDS. Is there any other way to achieve password-less login in postgresql? I tried

Re: [GENERAL] password-less access, without using pg_hba

2014-02-06 Thread David Johnston
Reece Hart wrote > I'd like to provide public access, without a password, to a database > hosted > on Amazon RDS. > > I'm familiar with using pg_hba.conf to enable trust (no) authentication > for > a user. pg_hba.conf is not available to DBAs on RDS. > > Is there any other way to achieve password

Re: [GENERAL] password-less access, without using pg_hba

2014-02-06 Thread John R Pierce
On 2/6/2014 6:07 PM, Reece Hart wrote: I'd like to provide public access, without a password, to a database hosted on Amazon RDS. I'm familiar with using pg_hba.conf to enable trust (no) authentication for a user. pg_hba.conf is not available to DBAs on RDS. Is there any other way to achieve

Re: [GENERAL] Password Security Standarts on PostgreSQL

2013-03-08 Thread Chris Travers
On Fri, Mar 8, 2013 at 4:07 AM, Albe Laurenz wrote: > Victor Yegorov wrote: > > 2013/3/8 Albe Laurenz > >> This way you can also force a certain password expiry date > >> (PostgreSQL does not have a password life time). > > > > What bout ALTER ROLE ... VALID UNTIL 'timestamp' ? > > That's the pas

Re: [GENERAL] Password Security Standarts on PostgreSQL

2013-03-08 Thread Albe Laurenz
Victor Yegorov wrote: > 2013/3/8 Albe Laurenz >> This way you can also force a certain password expiry date >> (PostgreSQL does not have a password life time). > > What bout ALTER ROLE ... VALID UNTIL 'timestamp' ? That's the password expiry date. Oracle's concept is different: it sets a limit

Re: [GENERAL] Password Security Standarts on PostgreSQL

2013-03-08 Thread Victor Yegorov
2013/3/8 Albe Laurenz > This way you can also force a certain password expiry date > (PostgreSQL does not have a password life time). > What bout ALTER ROLE ... VALID UNTIL 'timestamp' ? -- Victor Y. Yegorov

Re: [GENERAL] Password Security Standarts on PostgreSQL

2013-03-08 Thread Albe Laurenz
MURAT KOÇ wrote: > In Oracle, it could be created a user profile called "PROFILE" and this > profile could have below > specifications: > > PASSWORD_LIFE_TIME (that describes when password will expire) > FAILED_LOGIN_ATTEMPTS (specifies number of failed login attempts before > locking user a

Re: [GENERAL] Password Security Standarts on PostgreSQL

2013-03-07 Thread Adrian Klaver
On 03/07/2013 03:10 AM, MURAT KOÇ wrote: Hi list, In Oracle, it could be created a user profile called "PROFILE" and this profile could have below specifications: PASSWORD_LIFE_TIME (that describes when password will expire) FAILED_LOGIN_ATTEMPTS (specifies number of failed login attempts bef

[GENERAL] Password Security Standarts on PostgreSQL

2013-03-07 Thread MURAT KOÇ
Hi list, In Oracle, it could be created a user profile called "PROFILE" and this profile could have below specifications: PASSWORD_LIFE_TIME (that describes when password will expire) FAILED_LOGIN_ATTEMPTS (specifies number of failed login attempts before locking user account) PASSWORD_LOCK_T

Re: [GENERAL] password help

2012-07-30 Thread Guillermo Echevarria Quintana-Gurt
really really clulesss im having issues with that and im really sorry for taking your time on helping me. > Date: Mon, 30 Jul 2012 13:49:03 +0800 > From: ring...@ringerc.id.au > To: guie...@hotmail.com; pgsql-general@postgresql.org > Subject: Re: [GENERAL] password help > >

Re: [GENERAL] password help

2012-07-30 Thread Craig Ringer
On 07/30/2012 02:00 PM, Guillermo Echevarria Quintana-Gurt wrote: Im contacting them tomorrow for sure. My issue is that I uninstalled the postgresql system from my computer and now I cant get it installed again because of the password issue. Thats all im trying to solve, getting the postgresql

Re: [GENERAL] password help

2012-07-29 Thread Craig Ringer
Please don't reply directly to me, reply via the mailing list (use "Reply all"). On 07/30/2012 01:35 PM, Guillermo Echevarria Quintana-Gurt wrote: Hi Craig, I really appreciate your answer. My situation is the one I described you in the first email. I guess i should've add that i really have n

Re: [GENERAL] password help

2012-07-29 Thread Craig Ringer
On 07/30/2012 02:30 AM, Guillermo Echevarria Quintana-Gurt wrote: Hi, I just uninstalled version 8.4 and tried installing version 9.1 in my computer (my system is Windows 7). The issue Im facing was that when I clicked run to install the new version one of the steps was requiring me the follo

[GENERAL] password help

2012-07-29 Thread Guillermo Echevarria Quintana-Gurt
Hi, I just uninstalled version 8.4 and tried installing version 9.1 in my computer (my system is Windows 7). The issue Im facing was that when I clicked run to install the new version one of the steps was requiring me the following: "please provide a password for the database superuser (postg

Re: [GENERAL] PASSWORD vs. md5('somepass')

2012-03-21 Thread Alexander Reichstadt
Thanks, I was here . Am 20.03.2012 um 16:55 schrieb Josh Kupershmidt: > On Tue, Mar 20, 2012 at 8:28 AM, Alexander Reichstadt wrote: >> Hi, >> >> I look for a way to reproduce the encrypted string stored as a password by >> means

Re: [GENERAL] PASSWORD vs. md5('somepass')

2012-03-20 Thread Josh Kupershmidt
On Tue, Mar 20, 2012 at 8:28 AM, Alexander Reichstadt wrote: > Hi, > > I look for a way to reproduce the encrypted string stored as a password by > means other than using the CREATE ROLE command. > > When using CREATE ROLEPASSWORD 'somepass' the resulting string for > rolpassword in pg_a

[GENERAL] PASSWORD vs. md5('somepass')

2012-03-20 Thread Alexander Reichstadt
Hi, I look for a way to reproduce the encrypted string stored as a password by means other than using the CREATE ROLE command. When using CREATE ROLEPASSWORD 'somepass' the resulting string for rolpassword in pg_authid always starts with md5, suggesting it would create some md5 string.

Re: [GENERAL] Password issue

2011-05-20 Thread Albe Laurenz
Mahmoud wrote: > I am trying to create a database by passing arguments to createdb.exe > but createdb always asks me about the password although I passed -W 123 > to it. > > How can I override password request? > > PS > This my test for creating the database > createdb.exe -U postgres -W 123 -O ad

Re: [GENERAL] Password issue

2011-05-19 Thread hubert depesz lubaczewski
On Thu, May 19, 2011 at 05:53:11PM +0300, Mahmoud wrote: > Hi all > I am trying to create a database by passing arguments to > createdb.exe but createdb always asks me about the password although > I passed -W 123 to it. please check docs for createdb http://www.postgresql.org/docs/current/intera

Re: [GENERAL] Password issue

2011-05-19 Thread Ashesh Vashi
'-W' option is there to prompt the password. Use PGPASSWORD environment variable. http://www.postgresql.org/docs/8.3/static/libpq-envars.html *createdb creates a PostgreSQL database.* * * *Usage:* * createdb [OPTION]... [DBNAME] [DESCRIPTION]* * * *Options:* * -D, --tablespace=TABLESPACE defau

[GENERAL] Password issue

2011-05-19 Thread Mahmoud
Hi all I am trying to create a database by passing arguments to createdb.exe but createdb always asks me about the password although I passed -W 123 to it. How can I override password request? PS This my test for creating the database createdb.exe -U postgres -W 123 -O admin -e test Cheers.

Re: [GENERAL] password

2011-02-21 Thread Roedy Green
On Mon, 21 Feb 2011 10:45:14 +0530, sachin.srivast...@enterprisedb.com (Sachin Srivastava) wrote, quoted or indirectly quoted someone who said : >Hello, > >Installation of postgresql requires you to enter a password for the user >'postgres'. > > i) If the user 'postgres' is not there, it will cre

Re: [GENERAL] password

2011-02-21 Thread Roedy Green
On Sun, 20 Feb 2011 21:44:22 -0800, pie...@hogranch.com (John R Pierce) wrote, quoted or indirectly quoted someone who said : >when you initially connect to postgres wtih psql or pgadmin-III, specify >the user as `postgres` and then once connected, It would not let me in even once. -- Roedy Gre

Re: [GENERAL] password

2011-02-20 Thread John R Pierce
On 02/20/11 9:15 PM, Sachin Srivastava wrote: In case you dont remember the password you set for user 'postgres' then you can change the same via "Right Click My Computer"-->"Manage"-> Users.. note that if you change it here, you also need to change it in the postgres service descriptor, in

Re: [GENERAL] password

2011-02-20 Thread Sachin Srivastava
Hello, Installation of postgresql requires you to enter a password for the user 'postgres'. i) If the user 'postgres' is not there, it will create it and set the password to whatever you have provided, ii) If the user 'postgres' is already existing, then you have to give its password to move

[GENERAL] password

2011-02-20 Thread Roedy Green
I gave Postgre a password during install. However, it always rejects it. I tried uninstalling, deleting all files, and reinstalling. Same thing. It complains about user "roedy" (my windows id). It seems to me the default user is supposed to be postgres not Roedy. Perhaps that is the source of th

Re: [GENERAL] password management

2010-05-07 Thread Christophe Dore
Hi IMHO, you should never store password in clear If you store the last 5 crypted passwords, then you can make it comparing the new password, crypted, to those 5 strings. Regards -- Christophe Doré Implementation Product Manager 3 rue Marcel Allegot 92190 Meudon, France +33

Re: [GENERAL] password management

2010-05-06 Thread Craig Ringer
On 7/05/2010 12:01 PM, Craig Ringer wrote: craig=> create or replace function extract_salt(text) returns text as $$ craig$> select (regexp_matches($1, E'^(\\$[^\\$]+\\$[^\\$]+)\\$'))[1]; craig$> $$ language sql immutable; Upon re-reading the pgcrypto documentation I see that this is unnecessar

Re: [GENERAL] password management

2010-05-06 Thread Craig Ringer
On 7/05/2010 2:31 AM, akp geek wrote: Dear all - I am writing function to handle the passwords. Currently the crypt is being used to store the password in the database. what I need to do is, when the user wants to change the password, I need to check if that password is not being

[GENERAL] password management

2010-05-06 Thread akp geek
Dear all - I am writing function to handle the passwords. Currently the crypt is being used to store the password in the database. what I need to do is, when the user wants to change the password, I need to check if that password is not being used before up to 5 times, If not then t

Re: [GENERAL] [Password?]

2009-07-09 Thread Ms swati chande
Hi,   Thank you all for your kind responses.   Things however aren't falling in place.   Will take a short break, rework, and get back. Probably, with a new problem!   Thanks again, Regards Swati

Re: [GENERAL] Password?

2009-07-08 Thread Adrian Klaver
On Wednesday 08 July 2009 11:48:08 am Ms swati chande wrote: > Hi, >   > I started everything again from scratch. > 1. Created a new user("Swati"), with limited/ restricted rights. >     Ensured that no password is set anywhere. How limited? Can this user do administrative tasks, i.e create databa

Re: [GENERAL] Password?

2009-07-08 Thread John R Pierce
Ms swati chande wrote: Made the following change in the postgresql.conf file: listen_addresses = 'xxx.xxx.x.x' (my current ip) and in pg_hba: host all all 'xxx.xxx.x.x' trust ... 6.Opened another command

Re: [GENERAL] Password?

2009-07-08 Thread Andreas Wenk
Ms swati chande schrieb: Hi, I started everything again from scratch. 1. Created a new user("Swati"), with limited/ restricted rights. Ensured that no password is set anywhere. 2. Ran initdb from the new user. c:\postgresql\bin>initdb -D c:\po

Re: [GENERAL] Password?

2009-07-08 Thread Ms swati chande
Hi,   I started everything again from scratch. 1. Created a new user("Swati"), with limited/ restricted rights.     Ensured that no password is set anywhere.   2. Ran initdb from the new user.     c:\postgresql\bin>initdb -D c:\postgresql\data2    It displayed the DEBUG: start transact

Re: [Re: [GENERAL] Password?]

2009-07-08 Thread Ms swati chande
Yes, Its the currently logged on user. --- On Wed, 7/8/09, Andreas Wenk wrote: From: Andreas Wenk Subject: [Re: [GENERAL] Password?] To: "PG-General Mailing List" Date: Wednesday, July 8, 2009, 3:54 PM Serge Fonville schrieb: >> *argh* - more detailed to avoid confusion.

Re: [GENERAL] Password?

2009-07-08 Thread Abbas
On Wed, Jul 8, 2009 at 4:12 PM, Andreas Wenk wrote: > Ms swati chande schrieb: > >> --- On *Wed, 7/8/09, Andreas Wenk //* >> wrote: >> >> >>From: Andreas Wenk >>Subject: Re: [GENERAL] Password? >>To: "Ms swati chande" , &quo

Re: [GENERAL] Password?

2009-07-08 Thread Ms swati chande
>ah ok .. >Actually it should work if you set listen_addresses to '*' in postgresql.conf. >Did you >change anything else in postgresql.conf or pg_hba.conf? >I am not too experienced with Windows so maybe someone with more knowledge is >able >to find the trick (I installed 8.4 once with the one

Re: [GENERAL] Password?

2009-07-08 Thread Andreas Wenk
Ms swati chande schrieb: Thanks Andy, I am working on Windows XP. Have built from source using Visual Studio 2005. I have made a change in pg_hba.conf to include the ipconfig of my system. # TYPE DATABASEUSERCIDR-ADDRESS METHOD *hostall all

Re: [GENERAL] Password?

2009-07-08 Thread Andreas Wenk
Ms swati chande schrieb: --- On *Wed, 7/8/09, Andreas Wenk //* wrote: From: Andreas Wenk Subject: Re: [GENERAL] Password? To: "Ms swati chande" , "PG-General Mailing List" Date: Wednesday, July 8, 2009, 3:47 PM Ms swati chande schrieb: >

Re: [GENERAL] Password?

2009-07-08 Thread Abbas
On Wed, Jul 8, 2009 at 3:22 PM, Andreas Wenk wrote: > Andreas Wenk schrieb: > >> Ms swati chande schrieb: >> >>> Hi >>> When I write the following commands at the prompt, >>> >>> >createuser -S -d -R user1 >>> > createdb sample >>> >>> I am asked to enter a password. I have not set any passwor

[Re: [GENERAL] Password?]

2009-07-08 Thread Andreas Wenk
Serge Fonville schrieb: *argh* - more detailed to avoid confusion. The auth method 'password' in pg_hba.conf means, that you will be asked for a password for the user you try to create a db with. If no user is given (with createdb -U [username]), this user is postgres ... Wasn't it that it uses

Re: [GENERAL] Password?

2009-07-08 Thread Andreas Wenk
Andreas Wenk schrieb: Ms swati chande schrieb: Hi When I write the following commands at the prompt, >createuser -S -d -R user1 > createdb sample I am asked to enter a password. I have not set any password anywhere. Which password is it asking for? Please help. I have built from source

Re: [GENERAL] Password?

2009-07-08 Thread Andreas Wenk
Ms swati chande schrieb: Hi When I write the following commands at the prompt, >createuser -S -d -R user1 > createdb sample I am asked to enter a password. I have not set any password anywhere. Which password is it asking for? Please help. I have built from source on Windows XP. Thanks

[GENERAL] Password?

2009-07-08 Thread Ms swati chande
Hi   When I write the following commands at the prompt, >createuser -S -d -R user1 > createdb sample I am asked to enter a password. I have not set any password anywhere. Which password is it asking for? Please help. I have built from source on Windows XP. Thanks is advance, Regards Swati

Re: [GENERAL] password for postgres

2009-02-20 Thread Jasen Betts
On 2009-02-13, Kusuma Pabba wrote: > i don't know y am i getting this problem > > when i try to start off postgres > it asks me for password: what OS. what command are you using? -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http:

Re: [GENERAL] password for postgres

2009-02-14 Thread Sim Zacks
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 You do not want to use the keyword encrypted. To get in, go to your pg_hba file and set the security level to trust for your account. Then go in as postgres without a password and change it by: alter role postgres with password 'welcome'; > ALTER USE

Re: [GENERAL] password for postgres

2009-02-13 Thread Adrian Klaver
On Friday 13 February 2009 2:18:32 am Kusuma Pabba wrote: > i don't know y am i getting this problem > > when i try to start off postgres > it asks me for password: Are trying to start the Postgres program or are you trying to connect to an already running server? > > > i did not set any passwo

Re: [GENERAL] password for postgres

2009-02-13 Thread Abdul Rahman
Kindly let me know two things to answer you. First, Are you trying to start postgres service or psql prompt? second, what OS is in your use.

[GENERAL] password for postgres

2009-02-13 Thread Kusuma Pabba
i don't know y am i getting this problem when i try to start off postgres it asks me for password: i did not set any password as such except that when the first day i used template, i ahve used the below two statements ALTER USER postgres with encrypted password 'your_password'; ALTER USER

Re: [GENERAL] Password and Installation

2008-11-24 Thread Dave Page
Hi Andrew, On Mon, Nov 24, 2008 at 12:10 AM, Andrew Maeng <[EMAIL PROTECTED]> wrote: > Thanks Dave. I can't seem to find the SQL user in the user accounts though. > All i can see is the asp.net machine account. Look for a user called 'postgres', not SQL. > I'm guessing that this means that Postg

Re: [GENERAL] Password and Installation

2008-11-21 Thread Dave Page
On Fri, Nov 21, 2008 at 10:30 PM, Andrew Maeng <[EMAIL PROTECTED]> wrote: > Hi, > > I recently uninstalled PostgreSQL, and now am attempting to reinstall it on > a Windows Vista OS. However, I don't remember the password that was used to > install PostgreSQL before, and am prompted with "The passwo

[GENERAL] Password and Installation

2008-11-21 Thread Andrew Maeng
Hi, I recently uninstalled PostgreSQL, and now am attempting to reinstall it on a Windows Vista OS. However, I don't remember the password that was used to install PostgreSQL before, and am prompted with "The password specified was incorrect. Please enter the correct password for the postgres

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Steve Manes
Bohdan Linda wrote: On Thu, May 15, 2008 at 05:40:49PM +0200, Steve Manes wrote: I keep the user's login credentials in a TripleDES-encrypted, non-persistent cookie, separate from session data. This is the approach I am/will be heading to. Having the cookie with login and password encrypted on

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Bohdan Linda
Hello, thank you everyone for the answers. I went through and I forgot add one thing. The web-app is frontend, thus basically PL/PGSQL launcher and all changes are audited, so common login is unwelcome. On Thu, May 15, 2008 at 05:40:49PM +0200, Steve Manes wrote: > I keep the user's login crede

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Craig Ringer
Steve Crawford wrote: You can make some modest security improvements by storing things such as the browser identification and IP address in the session data and verifying it on each request but IP verification fails if the user is behind a proxy like AOL's where each request may come from a di

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Steve Manes
Bohdan Linda wrote: The frontend is web based so it is stateless; it is connecting to database on every get/post. There is also a requirement that the user is transparently logged in for some period of time. Tha most easy way is to store login credentials into the session. The drawback is that s

Re: [GENERAL] Password safe web application with postgre*s*

2008-05-15 Thread Steve Crawford
[EMAIL PROTECTED] wrote: ... By the way, this is an *intra*net-solution, and we don't have hackers in our staff, I hope... Cross your fingers - most compromises come from inside the firewall. Cheers, Steve -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Steve Crawford
Bohdan Linda wrote: Hello, I have the following problem. A multiuser app has authentization and authorization done based on pgsql. The frontend is web based so it is stateless; it is connecting to database on every get/post. There is also a requirement that the user is transparently logged in f

Re: [GENERAL] Password safe web application with postgre*s*

2008-05-15 Thread ludwig
In our web-based-solution (PHP)  the database credentials (username and password) are encrypted and stored by PHP as session-Variables.Yes, there is the risk, they could be read by someone, who has access to the apache-sessions-directory, but this user also must have access to the php-scripts with

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Fernando
You could try to have a function in your application that encrypts the connection string and store it in a session variable. When you need it you decrypted from the session variables. Session variables are stored as files on the server, therefore the risk is not as high. Just a thought. Fer

Re: [GENERAL] Password safe web application with postgre

2008-05-15 Thread Allan Kamau
Hi Bohdan, Is your web applications for use with PostgreSQL server administration where you would like users to supply their login credentials for PostgreSQL so that their actions within the db can be limited by the fine gain privileges assigned to them? If it is not then you may want to mayb

[GENERAL] Password safe web application with postgre

2008-05-15 Thread Bohdan Linda
Hello, I have the following problem. A multiuser app has authentization and authorization done based on pgsql. The frontend is web based so it is stateless; it is connecting to database on every get/post. There is also a requirement that the user is transparently logged in for some period of time

Re: [GENERAL] password option in pg_dumpall

2008-02-07 Thread Tom Lane
"[EMAIL PROTECTED]" <[EMAIL PROTECTED]> writes: > is there anyway of specifying password in the command line interface > of pg_dumpall?? No, and you wouldn't want to use it if there was (hint: putting a password on a command line is insecure). The recommended procedure to avoid a lot of password

[GENERAL] password option in pg_dumpall

2008-02-07 Thread [EMAIL PROTECTED]
is there anyway of specifying password in the command line interface of pg_dumpall?? this my script, and it asks for password for every host... thanks ''' #!/bin/sh for line in `cat /home/mark/work/infrastructure/farm_all` do pg_dumpall -h $line -U postgres | bzip2 > "$line.bz2" done ''' ---

Re: [GENERAL] Password as a command line argument to createuser

2007-12-19 Thread Andrew Sullivan
On Wed, Dec 19, 2007 at 10:38:52AM -0500, Tom Lane wrote: > reading the password from /dev/tty, so if you want to script this, you'd > be stuck with making a special-purpose program that didn't. But given that passwords are sort of awful in this way anyway, why not use something designed not to ha

Re: [GENERAL] Password as a command line argument to createuser

2007-12-19 Thread Tom Lane
Greg Smith <[EMAIL PROTECTED]> writes: > In your typical shell nowadays the echo command is a built-in one--it > executes directly rather than calling a separate echo binary, so it won't > leak what you tell it onto a command line. That means this line in a > script would be simplest way to do

Re: [GENERAL] Password as a command line argument to createuser

2007-12-18 Thread Greg Smith
On Wed, 19 Dec 2007, A. Kretschmer wrote: psql -U ... database -c "create user foo password 'secret';" This seems like a reasonable example, but it will also show the password you're assigning on the command line to anybody who happens to run ps, which is the reason why this isn't allowed by

Re: [GENERAL] Password as a command line argument to createuser

2007-12-18 Thread A. Kretschmer
am Tue, dem 18.12.2007, um 22:04:13 -0800 mailte Jane Ren folgendes: > Hi, > > I need to write a script that creates a new user with a password > automatically. > > Is there a way I can specify the password as a command line argument to > createuser? >From a unix shell? You can call psql with -

Re: [GENERAL] Password as a command line argument to createuser

2007-12-18 Thread Tom Lane
"Jane Ren" <[EMAIL PROTECTED]> writes: > Is there a way I can specify the password as a command line argument to > createuser? No, and it would be a really bad idea if you could, as the password would be exposed to everyone else on the machine (via "ps") while createuser runs. There are various w

Re: [GENERAL] Password as a command line argument to createuser

2007-12-18 Thread Joshua D. Drake
Jane Ren wrote: Hi, I need to write a script that creates a new user with a password automatically. Is there a way I can specify the password as a command line argument to createuser? Since you have access to the shell use psql -U user -c "create role ..." Joshua D. Drake It looks like po

[GENERAL] Password as a command line argument to createuser

2007-12-18 Thread Jane Ren
Hi, I need to write a script that creates a new user with a password automatically. Is there a way I can specify the password as a command line argument to createuser? It looks like postgres does not read from stdin, but from /dev/tty. Thanks ---(end of broadcast)--

Re: [GENERAL] Password authentication failed

2007-05-03 Thread Jan Bilek
, May 01, 2007 1:29 PM Subject: [GENERAL] Password authentication failed Hi! I am a complete newbee to Postgres. Have installed Postgres on Windows 2003 server SP1 a week back. When I try to log-in to the server (by writting psql mydb at command prompt in postgres/bin directory), I keep

[GENERAL] Password authentication failed

2007-05-03 Thread Suresh Nimbalkar
Hi! I am a complete newbee to Postgres. Have installed Postgres on Windows 2003 server SP1 a week back. When I try to log-in to the server (by writting psql mydb at command prompt in postgres/bin directory), I keep getting a message "psal: FATAL: password authentication failed for user"Administ

Re: [GENERAL] Password for postgres

2007-03-07 Thread Shoaib Mir
The command goes through fine, but the next time I log into postgres using the command, >>psql mydb postgres >>it logs in, and doesnt ask me for a password at all. If I issue a command like, This is because you have trust in pg_hba.conf file, change it to md5 so it asks for password every time y

[GENERAL] Password for postgres

2007-03-07 Thread George Heller
Hi all, I am using a postgres database, and want to set a password for the account. The default user name is 'postgres' and in order to set a password, I did an alter user as below, alter user postgres with password 'mypwd'; The command goes through fine, but the next time I log

Re: [GENERAL] Password issue revisited

2007-02-23 Thread Bruce Momjian
I assume this is not a TODO. --- Magnus Hagander wrote: > >>> The default on *all* windows versions since NT 4.0 (which is when the > >>> directory we use was added) will put this file in a protected directory. > >>> The onl

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Dave Page
Magnus Hagander wrote: > Dave Page wrote: >> Magnus Hagander wrote: >> >>> Just to make things clear, this wouldn't be about another auth method. >>> Windows has an API to store arbitrary passwords in a "secure way". At >>> least it does in XP+, not sure if it was in 2000. >> Would it really solve

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Magnus Hagander
Dave Page wrote: > Magnus Hagander wrote: > >> Just to make things clear, this wouldn't be about another auth method. >> Windows has an API to store arbitrary passwords in a "secure way". At >> least it does in XP+, not sure if it was in 2000. > > Would it really solve Tony's problem though? I'm

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Dave Page
Magnus Hagander wrote: > Just to make things clear, this wouldn't be about another auth method. > Windows has an API to store arbitrary passwords in a "secure way". At > least it does in XP+, not sure if it was in 2000. Would it really solve Tony's problem though? I'm not familiar with the API yo

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Magnus Hagander
Tom Lane wrote: > Magnus Hagander <[EMAIL PROTECTED]> writes: >> Tony Caduto wrote: >>> What about having a wallet type system where the user can create a pass >>> phrase to protect a generated key that would get >>> loaded once per session. That is how KDE allows users to store passwords. > >> I

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Tom Lane
Magnus Hagander <[EMAIL PROTECTED]> writes: > Tony Caduto wrote: >> What about having a wallet type system where the user can create a pass >> phrase to protect a generated key that would get >> loaded once per session. That is how KDE allows users to store passwords. > If we wanted to do that, w

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Magnus Hagander
Tony Caduto wrote: > Magnus Hagander wrote: >> Are we sure we want to do this? (Sorry, didn't notice this thread last >> time) >> >> The default on *all* windows versions since NT 4.0 (which is when the >> directory we use was added) will put this file in a protected directory. >> > Is there tru

Re: [GENERAL] Password issue revisited

2007-02-20 Thread Tony Caduto
Magnus Hagander wrote: Are we sure we want to do this? (Sorry, didn't notice this thread last time) The default on *all* windows versions since NT 4.0 (which is when the directory we use was added) will put this file in a protected directory. Is there truly such a thing on a windows PC? All

  1   2   >