Re: [GENERAL] MD5 salt in pg_authid password hashes

2012-02-16 Thread Stefan Weiss
On 2012-02-16 04:18, Adrian Klaver wrote: > When you alter the role name you are told the password has been cleared. It > would be fairly easy to wrap the rename and the setting of the password in a > transaction. But this shouldn't be necessary. I don't get why the salt has to be linked with th

Re: [GENERAL] MD5 salt in pg_authid password hashes

2012-02-15 Thread Adrian Klaver
On Wednesday, February 15, 2012 6:34:21 pm Stefan Weiss wrote: > From the manual: > | Because MD5-encrypted passwords use the role name as cryptographic > | salt, renaming a role clears its password if the password is > | MD5-encrypted. > > In backend/commands/user.c > > if (!pg_md5_encrypt(p