Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nPADt-0005V5-5A for pgsql-hackers@arkaria.postgresql.org; Tue, 01 Mar 2022 21:39:57 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.92) (envelope-from ) id 1nPADr-00057K-TY for pgsql-hackers@arkaria.postgresql.org; Tue, 01 Mar 2022 21:39:55 +0000 Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29]) by malur.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nPADr-00057B-KL for pgsql-hackers@lists.postgresql.org; Tue, 01 Mar 2022 21:39:55 +0000 Received: from out3-smtp.messagingengine.com ([66.111.4.27]) by magus.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nPADp-0003PH-Gn for pgsql-hackers@lists.postgresql.org; Tue, 01 Mar 2022 21:39:55 +0000 Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 67E785C026C; Tue, 1 Mar 2022 16:39:52 -0500 (EST) Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Tue, 01 Mar 2022 16:39:52 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=anarazel.de; h= cc:cc:content-type:date:date:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:sender:subject :subject:to:to; s=fm1; bh=eFRVDh0W/VRDhvlyBBKHDiANTPSR9CMXynOg+S TK7kA=; b=It0U3qCMhpa4nyDZToB5KTfbsapb1+k00ehBSrq0MN2ztpTDxB06Cu nTXW0EDZXzds9YshjNWrw7WA3x0nHbQ+cJG2GbulOYsGy0/5hxvanufipkCf1zl+ lsgS9fxpNHhzjwdkOdHN1c0uRAuSZOmyltjdXnTrBMQDVkB3t3wz+0gcPOKANcWJ oCKOfel2cMRaUPIUanmwmiwGyT+5U+5pyK8RGrsTcGrnuIXcVHYQaBg/dt31dUE1 mxnV1UHk3+OY6CDRUmZcMeTxvDEnqKTFaaViWLS9wB+YEVyL6rNImf0/Dg7Y2YKM cVM8S5tZnVndZXSnoi7dPpb7kHZWwWoA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:date:date:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=eFRVDh0W/VRDhvlyB BKHDiANTPSR9CMXynOg+STK7kA=; b=Mp2CvIPG/hz9x5H9Bne1YlGOxx3RRb5QC 6BfEyb8zBXMJSOP7h4WZaU/6I26ZhqKpBOCuwiN1WBp6Max6AhUMCfDNxfglP9tN Wgmt8eG2oAS3UIocQrxu18w6z9y5VFYBJcsudvBL5lmfdGkTVTsQIOXqTL1qMmUs ALDfTMCyFstUv0TXp6jUW68S0mZtOHpxGFSGdlEcVXGQoiF7fdGU81EX+e+U3wGO Ic3r/gr0LfO9zfEeeaSmU6sKAxj1cO2h5P3UINdrN6dZMPqY9/9OB+VELtEHJqH+ YOBJDK9KWK7usk5JoZmJLAhkdqfuRtFbeEJdCLOqwQdHtHOW7fu+g== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvvddruddtvddgudeglecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpeffhffvuffkfhggtggujgesthdtredttddtvdenucfhrhhomheptehnughr vghsucfhrhgvuhhnugcuoegrnhgurhgvshesrghnrghrrgiivghlrdguvgeqnecuggftrf grthhtvghrnhepudekhfekleeugeevteehleffffejgeelueduleeffeeutdelffeujeff hfeuffdunecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomh eprghnughrvghssegrnhgrrhgriigvlhdruggv X-ME-Proxy: Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue, 1 Mar 2022 16:39:51 -0500 (EST) Date: Tue, 1 Mar 2022 13:39:50 -0800 From: Andres Freund To: "Jonathan S. Katz" Cc: Tom Lane , Jeff Davis , samay sharma , pgsql-hackers@lists.postgresql.org Subject: Re: Proposal: Support custom authentication methods using hooks Message-ID: <20220301213950.77zckcqds7kmhu34@alap3.anarazel.de> References: <1737574.1645753674@sss.pgh.pa.us> <54dc198b56a87e31e9625405383f04a8c6589b8b.camel@j-davis.com> <1905579.1645810764@sss.pgh.pa.us> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk Hi, On 2022-02-25 13:40:54 -0500, Jonathan S. Katz wrote: > On 2/25/22 12:39 PM, Tom Lane wrote: > > My point is that sending cleartext passwords over the wire is an > > insecure-by-definition protocol that we shouldn't be encouraging > > more use of. > > This is my general feeling as well. We just spent a bunch of effort adding, > refining, and making SCRAM the default method. I think doing anything that > would drive more use of sending plaintext passwords, even over TLS, is > counter to that. I want to again emphasize that, as proposed, a custom auth method can use SCRAM if relevant for it, with a small amount of code. So the whole plaintext discussion seems independent. Samay, what do you think about updating the test plugin to do SCRAM instead of plaintext, just to highlight that fact? Greetings, Andres Freund