Guillaume Lelarge <guillaume.lela...@dalibo.com> writes: > v2 is attached.
This seems pretty much entirely useless to me. The password
has already been leaked to the log (*and* the network, if
session is unencrypted), so what's the point of a warning?
And as already noted, this ignores several other hazards of
the same sort, so it's more likely to create a false sense of
security than anything else.
(In addition to the points noted, what of event triggers?
Or ~/.psql_history?)
regards, tom lane
