March 27th, 2002, 08:48 AM
PostgreSQL encrypted password bug?
I've encounter a strange bug while opening a PostgreSQL connection from php4, with password set as encrypted under pg_hba.conf
host all 192.168.1.100 255.255.255.255 crypt -
and the password set to "1234567890".
However, I'm able to open the connection with password as "12345678" and even "12345678abcd", but not "1234567" or "1234567a".
pg_connect ("host=192.168.1.100 port=5432 dbname=system user=foo password=12345678");
I concluded that only the 1st 8 characters of the password is used for authentification when encrypted password is used. This doesn't happen password is set as plain text.
Wondering if any of you guys out there encounter this bug.
March 28th, 2002, 03:08 AM
Did you check Postgresql bugs database? Why don't you fill a bug report on their site?