On Mon, Sep 17, 2018 at 10:46:24PM +0100, Stuart Henderson wrote:
> On 2018/09/17 17:20, Daniel Jakots wrote:
> > Also I can't really see a case where a lib without support for the new
> > auth method could be a problem. If it doesn't support it, you can just
> > set MD5 for the app user in your pg
On 2018/09/17 17:20, Daniel Jakots wrote:
> Also I can't really see a case where a lib without support for the new
> auth method could be a problem. If it doesn't support it, you can just
> set MD5 for the app user in your pg_hba.conf, no? Am I missing
> something?
OK for the UTF8 change.
README-
On Mon, Sep 17, 2018 at 05:20:16PM -0400, Daniel Jakots wrote:
>
> Also I can't really see a case where a lib without support for the new
> auth method could be a problem. If it doesn't support it, you can just
> set MD5 for the app user in your pg_hba.conf, no? Am I missing
> something?
>
No, s
On Sat, 15 Sep 2018 11:17:27 -0700, Chris Bennett
wrote:
> Perfect.
> Thanks. You don't know how many times I've had to re-do after grabbing
> that first line without UTF-8.
Thanks for your feedback!
danj: about the diff for pgsql. I agree with the utf-8 bit but
for the scram-sha, i'm not sure
Perfect.
Thanks. You don't know how many times I've had to re-do after grabbing
that first line without UTF-8.
Happier,
Chris Bennett
On Sat, 15 Sep 2018 05:11:19 -0700, Chris Bennett
wrote:
> could we make UTF8 the default
Sounds sane to me.
> and mention ASCII as another possible option instead?
I'd prefer to zap it altogether. I hope users look up in the pgsql doc
what the arguments are for.
Does this diff would work for
May want to be careful with this as not all applications and libraries
have been updated for the new encryption and will result in errors.
With that said I do think there should be a note to use real standards,
SCRAM-SHA-256, rather than their hand rolled MD5 implementation.
On 2018-09-14 21:
IMHO, I am no expert at all in which encoding is most commonly used in
practice, but I cannot even imagine myself ever wanting to choose ASCII
first. Since we might change the readme right now, could we make UTF8
the default and mention ASCII as another possible option instead?
I have one old and
Hi,
With the version 10, pgsql comes with a new auth method called
scram-sha-256.
https://www.postgresql.org/docs/10/static/auth-methods.html#AUTH-PASSWORD
I think we should advise users to pick that one rather than md5. In the
upgrade part, the user has to copy the pg_hba.conf and this file list