On 11/2/2017 9:39 PM, Michael Paquier wrote:
The SCRAM discussion is spread across two threads mainly with hundreds of emails, which may discourage even the bravest. Here are links to the important documentation: https://www.postgresql.org/docs/current/static/auth-methods.html#auth-password
so that says... ... [scram-sha-256] is the most secure of the currently provided methods, but it is not supported by older client libraries....
whats the state of the more popular bindings now? jdbc, python native, etc ?
-- john r pierce, recycling bits in santa cruz
