On Fri, Apr 7, 2017 at 3:59 AM, Heikki Linnakangas <hlinn...@iki.fi> wrote: > I think the "SCRAM" part is more important than "SHA-256", so -1 on that.
I agree. The point here isn't that we're using a better hashing method, even if a lot of people *think* that's the point. The point is we're using a modern algorithm that has nice properties like "you can't impersonate the client by steeling the verifier, or even by snooping the exchange". But "sasl" might be even better. -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company -- Sent via pgsql-hackers mailing list (email@example.com) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers