chiru r wrote:
Hi All, I am trying to understand the Authentication method in pg_hba.conf file (password & md5) in PostgreSQL database server. I am assuming that the user provides the connection string host/usser/password,then client will go and contact the DB server pg_hba.conf file in memory without carrying password over the network initially, and then it confirms the authentication method from pg_hba.conf ,then it decides weather it send clear text or md5 encrypted password from client to Server to make a session? Is my assumption is correct ? or What exactly it make the difference for client if i use md5/password in pg_hba.conf file in DB server?.
Your assumptions sound consistent with documentation appearing at https://www.postgresql.org/docs/10/static/protocol-flow.html https://www.postgresql.org/docs/10/static/auth-methods.html -- B -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
