From bb6b1a38b6922a3c5b783bdd3e48c08fc73bc838 Mon Sep 17 00:00:00 2001 From: Tom Lane Date: Fri, 23 Sep 2005 15:05:04 +0000 Subject: [PATCH] Document that chkpass ignores password characters after the eighth. --- contrib/chkpass/README.chkpass | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/contrib/chkpass/README.chkpass b/contrib/chkpass/README.chkpass index 1dd3347c1f..41ae3ce7be 100644 --- a/contrib/chkpass/README.chkpass +++ b/contrib/chkpass/README.chkpass @@ -1,4 +1,4 @@ -$PostgreSQL: pgsql/contrib/chkpass/README.chkpass,v 1.2 2003/11/29 19:51:19 pgsql Exp $ +$PostgreSQL: pgsql/contrib/chkpass/README.chkpass,v 1.3 2005/09/23 15:05:04 tgl Exp $ Chkpass is a password type that is automatically checked and converted upon entry. It is stored encrypted. To compare, simply compare agains a clear @@ -17,6 +17,10 @@ passwords without re-encrypting them. If you want the password (encrypted) without the colon then use the raw() function. This allows you to use the type with things like Apache's Auth_PostgreSQL module. +The encryption uses the standard Unix function crypt(), and so it suffers +from all the usual limitations of that function; notably that only the +first eight characters of a password are considered. + D'Arcy J.M. Cain darcy@druid.net