Craig Ringer <[email protected]> writes:
> Anyway ... I'm curious about whether `SET ROLE rolename WITH PASSWORD'
> is something that's technically practical to implement in PostgreSQL and
> what people think about the idea.
Seems like it would have all the standard problems with cleartext
passwords being exposed in pg_stat_activity, system logs, etc.
Also, what about people who are using more-secure-than-password
auth methods, like Kerberos?
I'm not really for it.
regards, tom lane
--
Sent via pgsql-general mailing list ([email protected])
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
