Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1rJGwD-00CRHR-3x for pgsql-hackers@arkaria.postgresql.org; Fri, 29 Dec 2023 17:46:25 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.94.2) (envelope-from ) id 1rJGwB-00AUMJ-RS for pgsql-hackers@arkaria.postgresql.org; Fri, 29 Dec 2023 17:46:23 +0000 Received: from makus.postgresql.org ([2001:4800:3e1:1::229]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1rJGwB-00AULV-Al for pgsql-hackers@lists.postgresql.org; Fri, 29 Dec 2023 17:46:23 +0000 Received: from momjian.us ([72.94.173.45]) by makus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1rJGw7-00Cn2A-1A for pgsql-hackers@postgresql.org; Fri, 29 Dec 2023 17:46:22 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=momjian.us; s=2023062407; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID: Subject:Cc:To:From:Date:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description; bh=8Gs9AtemJEBNibz3evcE/PPAk6r9TEzU7RZKcqPsIJU=; b=3cUeK AeJje+5s+AWZSflO+bYJkRVMnLPSFHFRz++25nIICbRJkZ5Aul+Yn2sjs8K9B6HCghXff1/fATCV/ USQjV1ccGlKMwFfK8cVRXiz1v/5+AVPks2yG/xydktvG9xB1rzIEk+w0LdbTCFPuW/knbPM0SwKjA yYzBS/j8Wbi8RawzcbkZfvMIJ8W6VDmXyxprfYHgeHRdFBTxLwgJWdMvrnqfeqX6vuwKlRkbO/iHp gmXk4yKbrpg+jLwDdC+lpNYWZGjqFz2g3ybVbDd6Ys1aKIIUorBbgYRFwZBLpZDSY6LEuhB8ylqRV 2Hwm8MxcvL9TIiOlJJSBqkfF7X3+Q==; Received: from bruce by momjian.us with local (Exim 4.96) (envelope-from ) id 1rJGw2-00AWga-3D; Fri, 29 Dec 2023 12:46:14 -0500 Date: Fri, 29 Dec 2023 12:46:14 -0500 From: Bruce Momjian To: Peter Eisentraut Cc: Robert Haas , Stephen Frost , Michael Paquier , PostgreSQL mailing lists Subject: Re: [HACKERS] Changing references of password encryption to hashing Message-ID: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk On Wed, Dec 27, 2023 at 10:52:15PM +0100, Peter Eisentraut wrote: > On 27.12.23 02:04, Bruce Momjian wrote: > > I did_not_ change the user API, so CREATE/ALTER ROLE still uses > > [ENCRYPTED] PASSWORD, the GUC is still called password_encryption, and > > the libpq function is still called PQencryptPasswordConn(). This makes > > the user interface confusing since the API uses "encryption" but the > > text calls it "hashing". Is there support for renaming the API to use > > "hash" and keeping "encrypt" for backward compatiblity. > > Yeah, this is clearly confusing. I think we should just leave it alone. > Some gentle rewording here and there to clarify things might be appropriate > (but the text already uses hashing on some occasions), but the blanket > replacement does not make things better, I think. Seeing no more replies, I will abandon this improvement idea. -- Bruce Momjian https://momjian.us EDB https://enterprisedb.com Only you can decide what is important to you.