The following commit, which has introduced a new feature for PostgreSQL 11, introduces the possibility to lower a bit the set of permissions around data folders:
Read more...2018-04-28 08:50:33 +0000
The following commit, which has introduced a new feature for PostgreSQL 11, introduces the possibility to lower a bit the set of permissions around data folders:
Read more...2018-04-20 03:55:17 +0000
PostgreSQL 11 is releasing a small binary called pg_verify_checksums which is able to check if page-level checksums are in a sane state for a cluster which has been cleanly shutdown (this is necessary so as not not face checksum inconsistencies because of torn pages).
Read more...2018-04-11 06:01:32 +0000
INCLUDE clause for indexes (as known as covering indexes), is a new feature of PostgreSQL 11 which has been committed recently:
Read more...2018-04-06 13:57:11 +0000
As the week ends, here is an explanation behind the following commit which has changed a bit the way the libpq routine called PQhost behaves:
Read more...2018-01-22 05:32:53 +0000
Postgres 10 has introduced a lot of basic infrastructure for table partitioning with the presence of mainly a new syntax, and a lot of work happens in this area lately with many new features added in version 11 which is currently in development. This post is about the following commit:
Read more...2018-01-12 07:44:44 +0000
passwordcheck is a PostgreSQL contrib module able to check if raw password strings are able to respect some policies. For encrypted password, which is what should be used in most cases to avoid passing plain text passwords over the wire have limited checks, still it is possible to check for example for MD5-hashed entries if they match the user name. For plain text password, things get a bit more advanced, with the following characteristics:
Read more...2018-01-05 12:31:01 +0000
This post is about a new feature of PostgreSQL 11 I have been working on for the last couple of months, which has finally been merged into the upstream repository. So if nothing goes wrong, we will have channel binding support for SCRAM authentication in the next release of Postgres. The feature set consists mainly of the following commits. Here is the first one, which has added tls-unique:
Read more...2017-12-26 03:27:43 +0000
As designed by RFC 7677 and RFC 5802, SCRAM verifiers (please take this term as a password if you want, which means a proof of authentication) are defined with default parameters which make the computation of a proof costly, making it more expensive to do dictionary or brute-force attacks while offline. Longer nonces help in making the computation longer, but there are as well two parameters that help in deciding such computation time and strength to offline attacks:
Read more...2017-12-18 02:40:51 +0000
A couple of days back a thread has showed up on pgsql-hackers to discuss about the possibility of a function scanning all the partitions of a chain to get its size. The thread is here.
Read more...2017-12-03 07:05:22 +0000
It has been a long time since the last post. Today here is a post about the following feature that will land in Postgres 11:
Read more...Unless otherwise specified, the contents of this website are (C)Copyright Michael Paquier 2010-2019 and are licensed for use under CC BY-SA 3.0.