On mån, 2011-04-11 at 07:35 -0700, john.cheng wrote:
> I found that,if user modified the pg_hba.conf, modified the
> "METHOD"field from md5 to "password" then,user can find out the
> password by some the TCP/IP peep tool

Don't do that then.

Are you concerned that your users would do this?  Well, if you install
software on their machine, they can do whatever they want with it.
That's not an easy issue to solve.



-- 
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers

Reply via email to