Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1jb8lN-0003gm-9w for pgsql-pkg-yum@arkaria.postgresql.org; Tue, 19 May 2020 20:22:57 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.92) (envelope-from ) id 1jb8kp-0000Yi-HA for pgsql-pkg-yum@arkaria.postgresql.org; Tue, 19 May 2020 20:22:23 +0000 Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29]) by malur.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1jb8kp-0000Yb-Bt for pgsql-pkg-yum@lists.postgresql.org; Tue, 19 May 2020 20:22:23 +0000 Received: from ns5.gunduz.org ([107.170.136.15] helo=ns1.gunduz.org) by magus.postgresql.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1jb8kl-0008Uj-FL for pgsql-pkg-yum@postgresql.org; Tue, 19 May 2020 20:22:22 +0000 Received: from asus-laptop06.gunduz.org (unknown [31.14.249.174]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ns1.gunduz.org (Postfix) with ESMTPSA id 578253FDBB; Tue, 19 May 2020 20:22:10 +0000 (UTC) Message-ID: <7761d006b5ace13a4d86ce489123e5004aaf8b6c.camel@gunduz.org> Subject: Re: Can we stop defaulting to 'ident'? From: Devrim =?ISO-8859-1?Q?G=FCnd=FCz?= To: Craig Ringer , pgsql-pkg-yum Date: Tue, 19 May 2020 21:22:06 +0100 In-Reply-To: References: Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="=-CcNakGI7QTYjBA+NRKjb" User-Agent: Evolution 3.36.2 (3.36.2-1.fc32) MIME-Version: 1.0 List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Precedence: bulk --=-CcNakGI7QTYjBA+NRKjb Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, On Thu, 2019-12-19 at 12:58 +0800, Craig Ringer wrote: > 'ident' doesn't work by default on any RPM disto. So, I am thinking of switching to scram-sha-256 by default. We need to do this sooner or later anyway. We can blame "13", if someone complains. Any objections? I'm pulling the trigger for 13beta1. It means I'll also set the default in postgresql.conf to scram auth as well. Regards, --=20 Devrim G=C3=BCnd=C3=BCz Open Source Solution Architect, Red Hat Certified Engineer Twitter: @DevrimGunduz , @DevrimGunduzTR --=-CcNakGI7QTYjBA+NRKjb Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEH8GKHNUOKtDEiyD22MM9/pLPbrUFAl7EP+8ACgkQ2MM9/pLP brV4jRAAl7hRqzQj4fAFxCTL1zsA+cZliWRtbe1oqm9Okv4gkh1jXl/Cou8bOZEg CslHkhjLc8WW7rCGq5eV9HqqJR9/tgsn8xbqurCgKi0DpL4l6gFxA7QD55ViUz5G Id0YNHT/fKs2eeX37kBBHZVHZWAtKknaDxUN9E/MkU5zLcaYzGiVSiYsnNrptkct 4qaQCHV+7E1GmoS5L9d2OfuBSoKCSt3YTuOtcOek5oT3d5M/ckWxoc1s698LRBYG Dr47+iNJ1LDTNRwHq5JMSE2uihfNCdqcVdzeNdd2vdBEYaRw/hW1ozaQerKANxOa UZdk5uasXUIa1qQMq8FwEWwMEvihB4+IWGAdiBaRCnOwZp/yCVUZGPUKGCHYoVRP t3DkByGuCi6mIxPQHEXlBPX0uIIqh/tzSxyxN4S71dc9qhkByX6s3A4lPLcX0X23 LUn7k6yR8cct2SRVUkfbVqPuSL5SM6WaMRcmYLMnq7XTr8BuFQc9YpEU9oFlg373 rC+uoTZ6e3Y/E8ePb1wUSYb4/JBs1xJGiJlzsYU467IkuI7OII2ENENiyqXr2h+z OuK+7VeKIGk+BO+vnsRNMilIRYndISSl6mHG0kgJo+yroKeC9NnFBNV+ju1XNbvR RdMKWwo9OqWWMt9OQYt4KjL9yL7qLx40Fv5NSmdIAHa3WVGwxhQ= =Zs8X -----END PGP SIGNATURE----- --=-CcNakGI7QTYjBA+NRKjb--