Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nOmum-0004cO-A0 for pgsql-hackers@arkaria.postgresql.org; Mon, 28 Feb 2022 20:46:40 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.92) (envelope-from ) id 1nOmul-0005Ws-76 for pgsql-hackers@arkaria.postgresql.org; Mon, 28 Feb 2022 20:46:39 +0000 Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29]) by malur.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nOmuk-0005Wj-Tr for pgsql-hackers@lists.postgresql.org; Mon, 28 Feb 2022 20:46:38 +0000 Received: from tamriel.snowman.net ([2001:470:e38f::11]) by magus.postgresql.org with esmtp (Exim 4.92) (envelope-from ) id 1nOmui-0008Dy-Pi for pgsql-hackers@lists.postgresql.org; Mon, 28 Feb 2022 20:46:38 +0000 Received: by tamriel.snowman.net (Postfix, from userid 1000) id 578A75F7A2; Mon, 28 Feb 2022 15:46:34 -0500 (EST) Date: Mon, 28 Feb 2022 15:46:34 -0500 From: Stephen Frost To: Jeff Davis Cc: Tom Lane , samay sharma , pgsql-hackers@lists.postgresql.org Subject: Re: Proposal: Support custom authentication methods using hooks Message-ID: <20220228204634.GM10577@tamriel.snowman.net> References: <1737574.1645753674@sss.pgh.pa.us> <54dc198b56a87e31e9625405383f04a8c6589b8b.camel@j-davis.com> <1905579.1645810764@sss.pgh.pa.us> <2718414dc095b716e59e126c03af343997d14c7b.camel@j-davis.com> <1980351.1645816239@sss.pgh.pa.us> <9004b18218eae293f1ee888e49d13d8a6b02810d.camel@j-davis.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="9j9z4uig7ElIUlwi" Content-Disposition: inline In-Reply-To: <9004b18218eae293f1ee888e49d13d8a6b02810d.camel@j-davis.com> User-Agent: Mutt/1.5.24 (2015-08-30) List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk --9j9z4uig7ElIUlwi Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Greetings, * Jeff Davis (pgsql@j-davis.com) wrote: > On Fri, 2022-02-25 at 14:10 -0500, Tom Lane wrote: > > I also have in mind here that there has been discussion of giving > > libpq a feature to refuse, on the client side, to send cleartext > > passwords. >=20 > I am generally in favor of that idea, but I'm not sure that will > completely resolve the issue. For instance, should it also refuse MD5? md5 should be removed. Thanks, Stephen --9j9z4uig7ElIUlwi Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJiHTSpAAoJEO1sijiDR2RVo2YP/jWMGZN+tfQ40dJdA4sC1GmD Qti+r4O7h7p8MnOF+MjZNtx7Bj5d1PS98Z2ztdBFzaILKFb2Sus1fcgDk/DrFTCr 2XTj6ITUovf4lso+dvzqX2YRzYXkDPjVlsg/RHxbAV0Hf1/iPaCPJW65sw6lJuKi KgXTIzfQ4ndIhclqXU6PGm9Rcwv/8AvelAYihaKr3KPNxjqpo0ERo7b0TK/K9ekY bCmlxyTUEoaEk1PSPkIUfgJhd8J2dIpNp5bLsk2A4K/cpo2cLB0RruXZjAKyyCZu /HnjbrZDYY0AgmC9woqRspA8gscbjlQcNo564MQqVBl8KeCH4SyRF7prZGG8Md1P 2JF9QcQyN42agpsAep/NRZ1vO/s/9qnWb9Tzbw4u6B/HqQeA9x66cYc1BZX62yQB 7gt0sbV7dldXTy6bsuH8cG+8OI8QhXgHJC93vj2OGNcNiYxxCtLdfsDLNBzLM9Ol 3R3PlEUTVHPmWkGao1hxR3v2a4qe7/8qcV1hPiNtqc86znOxJ5VkV0P93059JQzl z+HXXd27tXK1crEj/algW52dtY/prhsD6UWm17mP+isnEjmtpgNCsG1QfZCQQGIZ I//G2Gg5BdcE7qOCyOHhP68Sf9M8bq86CGXSSznFs70z9ozVjrm+TsNGaSIgut6Z Oj4VzuCUjZP4Jpmxc57N =/IGs -----END PGP SIGNATURE----- --9j9z4uig7ElIUlwi--