Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5 passwords

2004-05-06 Thread Bruce Momjian
Bruce Momjian wrote: > Tom Lane wrote: > > Bruce Momjian <[EMAIL PROTECTED]> writes: > > > The attached patch clears the password field on rename: > > > > I think you should clear the password field *only* if it's > > MD5-encrypted. > > Patch attached and applied. Oh, I forgot to display the new

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5 passwords

2004-05-06 Thread Bruce Momjian
Tom Lane wrote: > Bruce Momjian <[EMAIL PROTECTED]> writes: > > The attached patch clears the password field on rename: > > I think you should clear the password field *only* if it's > MD5-encrypted. Patch attached and applied. -- Bruce Momjian| http://candle.pha.pa.u

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5 passwords

2004-04-30 Thread Bruce Momjian
Tom Lane wrote: > Bruce Momjian <[EMAIL PROTECTED]> writes: > > The attached patch clears the password field on rename: > > I think you should clear the password field *only* if it's > MD5-encrypted. I thought about that but it seems strange to conditionally do the clearing, but if you think we s

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5 passwords

2004-04-30 Thread Tom Lane
Bruce Momjian <[EMAIL PROTECTED]> writes: > The attached patch clears the password field on rename: I think you should clear the password field *only* if it's MD5-encrypted. regards, tom lane ---(end of broadcast)--- TIP 4:

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5

2004-04-27 Thread Alvaro Herrera
On Tue, Apr 27, 2004 at 09:37:50AM +0200, Fabien COELHO wrote: > Even of the salt is based on the login, the point is that it is stored > separatly, so the system does not rely on the login string to check the > password. > > The only other scheme which requires the user password somehow is the H

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5

2004-04-27 Thread Bruce Momjian
Fabien COELHO wrote: > > Dear Bruce, > > > Yes, the problem is that we used the username for the salt, just like > > FreeBSD does for its MD5 passwords. > > Not that I know of on FreeBSD? > > shell> uname -a > FreeBSD palo-alto2.ensmp.fr 4.9-STABLE FreeBSD 4.9-STABLE #5: Mon Mar 1 21:31:30 >

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5

2004-04-27 Thread Fabien COELHO
Dear Bruce, > Yes, the problem is that we used the username for the salt, just like > FreeBSD does for its MD5 passwords. Not that I know of on FreeBSD? shell> uname -a FreeBSD palo-alto2.ensmp.fr 4.9-STABLE FreeBSD 4.9-STABLE #5: Mon Mar 1 21:31:30 CET 2004 [EMAIL PROTECTED]:/usr/src/sys

Re: [PATCHES] [BUGS] BUG #1134: ALTER USER ... RENAME breaks md5 passwords

2004-04-26 Thread Bruce Momjian
PostgreSQL Bugs List wrote: > > The following bug has been logged online: > > Bug reference: 1134 > Logged by: Fabien COELHO > > Email address: [EMAIL PROTECTED] > > PostgreSQL version: 7.5 Dev > > Operating system: any > > Description:ALTER USER ... RENAME breaks