Message-ID: From: "benjaminpochat (@benjaminpochat)" To: "postgresql-interfaces/psqlodbc" Date: Thu, 21 Nov 2024 07:27:20 +0000 Subject: [postgresql-interfaces/psqlodbc] issue #74: encryption of password List-Id: X-GitHub-Author-Id: 2837726 X-GitHub-Author-Login: benjaminpochat X-GitHub-Issue: 74 X-GitHub-Repo: postgresql-interfaces/psqlodbc X-GitHub-State: open X-GitHub-Type: issue X-GitHub-Url: https://github.com/postgresql-interfaces/psqlodbc/issues/74 Content-Type: text/plain; charset=utf-8 When you click SAVE the password is stored as clear text in HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\postgres\Password Would it be possible to store the password encrypted ? In my company, the use of postgre odbc client is compromised because passwords are stored as clear text in Windows registry. Our use case consists in individual authentication to postgre databases, thanks to ldap2pg tool, for BI purposes. As a consequence, individual passwords are used in odbc clients. Then, the fact that postgre odbc client stores these personnal passwords as clear text is a real security issue. PS. : This issue follows [this discussion on psql-odbc mailing list ](https://www.postgresql.org/message-id/CADK3HHJqiZWkftjjD%3De_w3XLY6ri-0nXFKR4JQfL_dhab%2B8mig%40mail.gmail.com)