Dear all:
I am ready to release a client/server software (in windows xp),sure it's
postgresql based application
but I have to hide the password for sensitive data.
I found that,if user modified the pg_hba.conf, modified the "METHOD"field
from md5 to "password"
then,user can find out the password by some the TCP/IP peep tool --such as
(we don't plan to install SSL in server/client)
I think as a newbie as I know this bug,this solution should be released
Thanks for any advice/suggestion


                john from Taiwan

View this message in context:
Sent from the PostgreSQL - hackers mailing list archive at

Sent via pgsql-hackers mailing list (
To make changes to your subscription:

Reply via email to