Re: Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
From: Josh Berkus <josh@xxxxxxxxxxxx>
Date: Wed, 20 Apr 2005 19:18:39 -0700
In-reply-to: <1114002881.20906.ezmlm@xxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Aglio Database Solutions
References: <1114002881.20906.ezmlm@xxxxxxxxxxxxxxxxx>
Reply-to: josh@xxxxxxxxxxxx
User-agent: KMail/1.7.1

David, Stephen,

> I noted that this was a problem back in August, 2002:
>
> http://archives.postgresql.org/pgsql-admin/2002-08/msg00253.php
>
> Then, as now, the developers weren't very concerned.

Well, from our perspective, a random salt only protects against a very narrow 
range of attack types -- ones in which the attacker already has access to the 
physical database and wants to reverse-engineer user's passwords.  We'd be 
much more interested in the implementation of more/better authentication 
mechanisms.   See follow-up dicussion on pgsql-hackers.

Of course, if either of you *wrote* a random-salt patch for PostgreSQL, psql 
and libpq, then that would be a different story.   I don't know that anyone 
has anything *against* a random salt.   It's just not nearly as useful as, 
for example, implementing SHA1.

-- 
--Josh

Josh Berkus
Aglio Database Solutions
San Francisco

Prev by Date: MDKSA-2005:074 - Updated gnome-vfs2 packages fix vulnerability
Next by Date: [SECURITY] [DSA 701-2] New samba packages fix correct sporadic crash
Previous by thread: Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
Next by thread: gzip directory traversal vulnerability
Index(es):
- Date
- Thread