PostgreSQL Documentation: password

Type:	`enum`
Default:	`scram-sha-256`
Context:	`user`
Restart:	`false`
Values:	`[md5, scram-sha-256]`

Chooses the algorithm for encrypting passwords

When a password is specified in sql-createrole or sql-alterrole, this parameter determines the algorithm to use to encrypt the password. Possible values are scram-sha-256, which will encrypt the password with SCRAM-SHA-256, and md5, which stores the password as an MD5 hash. The default is scram-sha-256.

Note that older clients might lack support for the SCRAM authentication mechanism, and hence not work with passwords encrypted with SCRAM-SHA-256. See auth-password for more details.

Official docs

Search in source code

Recommendations

There is no good reason for this to be set to “off”.

By annotated.conf

On StackOverflow

What exactly means the collation 'de-DE-u-kn-true'
Lazily (de-)serialize JSON with EF Core
Connect to a heroku database with pgadmin
Get breakdown from de-normalized SQL table
PostGIS & Hibernate can't de-serialize point geometry

On pgsql-hackers

sunsetting md5 password support
bgwrite process is too lazy
Re: sunsetting md5 password support
Re: Redact user password on pg_stat_statements
Re: PATCH: warn about, and deprecate, clear text passwords

password_encryption

Recommendations

On StackOverflow

On pgsql-hackers

Comments