Received: from localhost (wm.hub.org [200.46.204.128]) by postgresql.org (Postfix) with ESMTP id 7A1059FB1CA for ; Tue, 17 Oct 2006 16:00:26 -0300 (ADT) Received: from postgresql.org ([200.46.204.71]) by localhost (mx1.hub.org [200.46.204.128]) (amavisd-new, port 10024) with ESMTP id 98787-09 for ; Tue, 17 Oct 2006 19:00:21 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey- Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.190]) by postgresql.org (Postfix) with ESMTP id 33D109FA4C9 for ; Tue, 17 Oct 2006 16:00:21 -0300 (ADT) Received: by nf-out-0910.google.com with SMTP id i2so411839nfe for ; Tue, 17 Oct 2006 12:00:19 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:from:to:cc:subject:in-reply-to:references:date:message-id:user-agent:mime-version:content-type:x-virus-scanned; b=MEQ9Q8TmH9ZtfhnY6mbN98fPhUV51cXzFpjWEjxgcWwweOnv4/5Y3kHVoU3OQ6ZdWW2BxllexvA0re59sBv6Bf8chtdvzROafMWhmJrTlAMI53RWmZheaVtH5LwESIYFyIxtOOfGko+eGER815FSZmlpcKsq26iyVH6us9I8ymw= Received: by 10.48.210.16 with SMTP id i16mr2093288nfg; Tue, 17 Oct 2006 12:00:19 -0700 (PDT) Received: from strongwill.g2ctech ( [201.47.19.248]) by mx.google.com with ESMTP id p43sm1951131nfa.2006.10.17.12.00.15; Tue, 17 Oct 2006 12:00:19 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by strongwill.g2ctech (Postfix) with ESMTP id 4A764E5672; Tue, 17 Oct 2006 17:00:09 -0200 (BRST) Received: from strongwill.g2ctech ([127.0.0.1]) by localhost (strongwill.g2ctech [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 32708-01; Tue, 17 Oct 2006 17:00:08 -0200 (BRST) Received: from jupiter.g2ctech (unknown [10.0.0.240]) by strongwill.g2ctech (Postfix) with ESMTP id 7EA07E5697; Tue, 17 Oct 2006 17:00:08 -0200 (BRST) Received: by jupiter.g2ctech (Postfix, from userid 1000) id ADF7317C701; Tue, 17 Oct 2006 16:00:05 -0300 (BRST) From: Jorge Godoy To: Shane Ambler Cc: Jeff Davis , DEV , pgsql-general@postgresql.org Subject: Re: Database users Passwords In-Reply-To: <45351C3E.7030200@007Marketing.com> (Shane Ambler's message of "Wed\, 18 Oct 2006 03\:39\:02 +0930") References: <002c01c6f1fa$652d3f60$0b01a8c0@LT003> <1161102985.31645.100.camel@dogma.v10.wvs> <45351C3E.7030200@007Marketing.com> Date: Tue, 17 Oct 2006 16:00:05 -0300 Message-ID: <873b9mlqdm.fsf@gmail.com> User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/21.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Virus-Scanned: amavisd-new at g2ctech.com X-Virus-Scanned: Maia Mailguard 1.0.1 X-Spam-Status: No, hits=0.199 tagged_above=0 required=5 tests=DNS_FROM_RFC_ABUSE, SPF_PASS X-Spam-Level: X-Archive-Number: 200610/849 X-Sequence-Number: 102375 Shane Ambler writes: > What Dev would want to look for (probably create) is a small script that will > read his list of crypt passwords and un-crypt them into a create role string > that is fed to psql. Except that the hash used is unidirectional, i.e., there's no way to decrypt it besides a brute force attack or something like that. If he's got, e.g., 10 users with strong passwords this kind of thing can take some weeks. -- Jorge Godoy