Search Postgresql Archives

Re: encrypt psql password in unix script

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On Wed, Jul 8, 2015 at 2:46 PM, John R Pierce <pierce@xxxxxxxxxxxx> wrote:
but what security does that gain you?    if someone gets your encrypted/hashed password, he can still log on.   the pgpass file has to be permissions 700, so only YOU (and root) can read it.

Exactly this. If you want a script to authenticate to postgres (or anything else) then somewhere you need something to be in the clear, whether it be the key to decrypt the password or a private key. If you can't trust the local file system and users, then you can't do what you want.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Books]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]
  Powered by Linux