mirrors/postgres
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Document actual string that has to be returned by the client for MD5

Browse Source 
authentication.

Report and pseudo code by Cyan Ogilvie
This commit is contained in:
Bruce Momjian 2011-10-13 20:48:50 -04:00
parent 0180bd6180
commit ad30d36642
1 changed files with 9 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
doc/src/sgml/protocol.sgml
View File

@ -293,10 +293,15 @@
<listitem> <listitem>
<para> <para>
The frontend must now send a PasswordMessage containing the The frontend must now send a PasswordMessage containing the
password encrypted via MD5, using the 4-character salt password (with username) encrypted via MD5, then encrypted
specified in the AuthenticationMD5Password message. If again using the 4-byte random salt specified in the
this is the correct password, the server responds with an AuthenticationMD5Password message. If this is the correct
AuthenticationOk, otherwise it responds with an ErrorResponse. password, the server responds with an AuthenticationOk,
otherwise it responds with an ErrorResponse. The actual
PasswordMessage can be computed in SQL as <literal>concat('md5',
md5(concat(md5(concat(password, username)), random-salt)))</>.
(Keep in mind the <function>md5()</> function returns its
result as a hex string.)
</para> </para>
</listitem> </listitem>
</varlistentry> </varlistentry>