PostgreSQL database security hardening (thirteen) - encrypted authentication password

Enterprise 2023-08-25 18:52:17 views: null

Article directory

foreword

PostgreSQL passwords sent over the network in clear text can be easily discovered by unauthorized users. A compromised password could easily lead to unauthorized access to the database.

1. Check configuration

As the database administrator (shown here as "postgres"), look at the authentication entry in pg_hba.conf:

cat ${PGDATA?}/pg_hba.conf

As shown in the figure below, if any entry uses method (the last column in the record) other than "MD5", there is a security risk.
insert image description here

2. Reinforcement suggestions

As the database administrator (shown here as "postgres"), edit the pg_hba.conf file and change the "method" column value to "md5".

vi ${PGDATA?}/pg_hba.conf

As shown in the figure below, change the "method" column value of all entries to "md5".
insert image description here

Summarize

If used for authentication passwords, PostgreSQL must only transmit encrypted passwords.

Guess you like

Origin blog.csdn.net/ma286388309/article/details/129204406
Recommended
Ranking
Linux关机和重启详解(shutdown、halt、poweroff、reboot、init)
Netty work notes 0007---NIO's three core component relationships
Knife4j tutorial
2021.10.29,内容:什么时候用接口和抽象类
How to solve the problem that changing the memory frequency causes the computer to become unusable?
SpringMVC Tutorial - Controller
linux learning skills -Linux 25 transport Vega paid special privileges and facl extension
Financial quarterly report evaluation report data automatic generation 1.0
Agile Development Series - The Values of Agile Development
scrapy achieve browsercookie Middleware
Daily
More
2024-05-19(0)
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)

Code World

© 2018 codetd.com