public inbox for [email protected]
help / color / mirror / Atom feedencryption of password
4+ messages / 4 participants
[nested] [flat]
* encryption of password
@ 2023-02-07 14:08 Oliver Spickhoff <[email protected]>
2024-11-20 14:08 ` Re: encryption of password Benjamin Pochat <[email protected]>
0 siblings, 1 reply; 4+ messages in thread
From: Oliver Spickhoff @ 2023-02-07 14:08 UTC (permalink / raw)
To: pgsql-odbc
Hi,
I have a suggestion for an enhancement:
When you click SAVE the password is stored as clear text in HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\postgres\Password
Would it be possible to store the password encrypted?
[cid:[email protected]]
Thanks,
Oliver
Oliver Spickhoff
Geschäftsführer • Managing Director
OSYON GmbH • Pfuelstraße 5 • 10997 Berlin • Germany
fon +49 30 310135-0 • fax +49 30 310135-55
[email protected]<mailto:[email protected]> • www.osyon.com<http://www.osyon.com;
[OSYON GmbH]
Reg-Nr: HRB 82465 AG Charlottenburg • USt-ID: DE217618646 • Geschäftsführer: Oliver Spickhoff
Attachments:
[image/png] image001.png (15.6K, 3-image001.png)
download | view image
[image/jpeg] OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg (70.7K, 4-OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg)
download | view image
^ permalink raw reply [nested|flat] 4+ messages in thread
* Re: encryption of password
2023-02-07 14:08 encryption of password Oliver Spickhoff <[email protected]>
@ 2024-11-20 14:08 ` Benjamin Pochat <[email protected]>
2024-11-20 16:26 ` Re: encryption of password Dave Cramer <[email protected]>
0 siblings, 1 reply; 4+ messages in thread
From: Benjamin Pochat @ 2024-11-20 14:08 UTC (permalink / raw)
To: pgsql-odbc; +Cc: Oliver Spickhoff <[email protected]>
Hi,
I was looking for the same feature.
In my company, the use of postgre odbc client is compromised because
passwords are stored as clear text in Windows registry.
Our use case consists in individual authentication to postgre databases,
thanks to ldap2pg tool, for BI purposes.
As a consequence, individual passwords are used in odbc clients.
Then, the fact that postgre odbc client stores these passwords as clear
text is a real security issue.
Password encryption would be really appreciated.
Regards,
Benjamin
Le mer. 20 nov. 2024 à 14:58, Oliver Spickhoff <[email protected]>
a écrit :
> Hi,
>
>
>
> I have a suggestion for an enhancement:
>
> When you click SAVE the password is stored as clear text in
> HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\postgres\Password
>
>
>
> Would it be possible to store the password encrypted?
>
>
>
>
>
> Thanks,
>
> Oliver
>
> Oliver Spickhoff
> Geschäftsführer • Managing Director
>
> OSYON GmbH • Pfuelstraße 5 • 10997 Berlin • Germany
> fon +49 30 310135-0 • fax +49 30 310135-55
> [email protected] • www.osyon.com
>
> [image: OSYON GmbH]
>
> Reg-Nr: HRB 82465 AG Charlottenburg • USt-ID: DE217618646 •
> Geschäftsführer: Oliver Spickhoff
>
>
>
Attachments:
[image/png] image001.png (15.6K, 3-image001.png)
download | view image
[image/jpeg] OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg (70.7K, 4-OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg)
download | view image
^ permalink raw reply [nested|flat] 4+ messages in thread
* Re: encryption of password
2023-02-07 14:08 encryption of password Oliver Spickhoff <[email protected]>
2024-11-20 14:08 ` Re: encryption of password Benjamin Pochat <[email protected]>
@ 2024-11-20 16:26 ` Dave Cramer <[email protected]>
2024-11-21 07:28 ` Re: encryption of password Benjamin POCHAT <[email protected]>
0 siblings, 1 reply; 4+ messages in thread
From: Dave Cramer @ 2024-11-20 16:26 UTC (permalink / raw)
To: Benjamin Pochat <[email protected]>; +Cc: pgsql-odbc; Oliver Spickhoff <[email protected]>
Please post this on github https://github.com/postgresql-interfaces/psqlodbc
Dave Cramer
www.postgres.rocks
On Wed, 20 Nov 2024 at 09:18, Benjamin Pochat <[email protected]>
wrote:
> Hi,
>
> I was looking for the same feature.
>
> In my company, the use of postgre odbc client is compromised because
> passwords are stored as clear text in Windows registry.
> Our use case consists in individual authentication to postgre databases,
> thanks to ldap2pg tool, for BI purposes.
> As a consequence, individual passwords are used in odbc clients.
> Then, the fact that postgre odbc client stores these passwords as clear
> text is a real security issue.
>
> Password encryption would be really appreciated.
>
> Regards,
>
> Benjamin
>
> Le mer. 20 nov. 2024 à 14:58, Oliver Spickhoff <[email protected]>
> a écrit :
>
>> Hi,
>>
>>
>>
>> I have a suggestion for an enhancement:
>>
>> When you click SAVE the password is stored as clear text in
>> HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\postgres\Password
>>
>>
>>
>> Would it be possible to store the password encrypted?
>>
>>
>>
>>
>>
>> Thanks,
>>
>> Oliver
>>
>> Oliver Spickhoff
>> Geschäftsführer • Managing Director
>>
>> OSYON GmbH • Pfuelstraße 5 • 10997 Berlin • Germany
>> fon +49 30 310135-0 • fax +49 30 310135-55
>> [email protected] • www.osyon.com
>>
>> [image: OSYON GmbH]
>>
>> Reg-Nr: HRB 82465 AG Charlottenburg • USt-ID: DE217618646 •
>> Geschäftsführer: Oliver Spickhoff
>>
>>
>>
Attachments:
[image/png] image001.png (15.6K, 3-image001.png)
download | view image
[image/jpeg] OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg (70.7K, 4-OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg)
download | view image
^ permalink raw reply [nested|flat] 4+ messages in thread
* Re: encryption of password
2023-02-07 14:08 encryption of password Oliver Spickhoff <[email protected]>
2024-11-20 14:08 ` Re: encryption of password Benjamin Pochat <[email protected]>
2024-11-20 16:26 ` Re: encryption of password Dave Cramer <[email protected]>
@ 2024-11-21 07:28 ` Benjamin POCHAT <[email protected]>
0 siblings, 0 replies; 4+ messages in thread
From: Benjamin POCHAT @ 2024-11-21 07:28 UTC (permalink / raw)
To: Dave Cramer <[email protected]>; +Cc: pgsql-odbc; Oliver Spickhoff <[email protected]>
Ok
This issue has been open in GitHub :
https://github.com/postgresql-interfaces/psqlodbc/issues/74
On 20/11/2024 17:26, Dave Cramer wrote:
> Please post this on github
> https://github.com/postgresql-interfaces/psqlodbc
> Dave Cramer
> www.postgres.rocks
>
>
> On Wed, 20 Nov 2024 at 09:18, Benjamin Pochat
> <[email protected]> wrote:
>
> Hi,
>
> I was looking for the same feature.
>
> In my company, the use of postgre odbc client is compromised
> because passwords are stored as clear text in Windows registry.
> Our use case consists in individual authentication to postgre
> databases, thanks to ldap2pg tool, for BI purposes.
> As a consequence, individual passwords are used in odbc clients.
> Then, the fact that postgre odbc client stores these passwords as
> clear text is a real security issue.
>
> Password encryption would be really appreciated.
>
> Regards,
>
> Benjamin
>
> Le mer. 20 nov. 2024 à 14:58, Oliver Spickhoff
> <[email protected]> a écrit :
>
> Hi,
>
> I have a suggestion for an enhancement:
>
> When you click SAVE the password is stored as clear text in
> HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\postgres\Password
>
> Would it be possible to store the password encrypted?
>
> Thanks,
>
> Oliver
>
>
> Oliver Spickhoff
> Geschäftsführer • Managing Director
>
> OSYON GmbH • Pfuelstraße 5 • 10997 Berlin • Germany
> fon +49 30 310135-0 • fax +49 30 310135-55
> [email protected]• www.osyon.com <http://www.osyon.com;
>
> OSYON GmbH
>
> Reg-Nr: HRB 82465 AG Charlottenburg • USt-ID: DE217618646 •
> Geschäftsführer: Oliver Spickhoff
>
>
Attachments:
[image/png] image001.png (15.6K, 3-image001.png)
download | view image
[image/jpeg] OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg (70.7K, 4-OSYON_d9b05cfe-6717-4df6-977a-28753dfe2f05.jpg)
download | view image
^ permalink raw reply [nested|flat] 4+ messages in thread
end of thread, other threads:[~2024-11-21 07:28 UTC | newest]
Thread overview: 4+ messages (download: mbox mbox.gz follow: Atom feed)
-- links below jump to the message on this page --
2023-02-07 14:08 encryption of password Oliver Spickhoff <[email protected]>
2024-11-20 14:08 ` Benjamin Pochat <[email protected]>
2024-11-20 16:26 ` Dave Cramer <[email protected]>
2024-11-21 07:28 ` Benjamin POCHAT <[email protected]>
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox