projects / pgpool2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4e3d6cc) | patch
Suppress unnecessary information upon authentication failure.
authorTatsuo Ishii <ishii@postgresql.org>
Sat, 17 May 2025 06:24:23 +0000 (15:24 +0900)
committerTatsuo Ishii <ishii@postgresql.org>
Sat, 17 May 2025 06:29:28 +0000 (15:29 +0900)
commitbc0d9ca49d7afabcbfc8e000a40075a9fac1adf6
tree0c9374779fc636e70a6032a611010a4c0fe6df4etree
parent4e3d6cc84a0124af925f79a36de3814daa1d6129commit | diff
Suppress unnecessary information upon authentication failure.

Previously a message "password size does not match" was displayed when
client authentication failed.  This could help an attacker to guess
password. Replace it just "password does not match".

Backpatch-through: v4.2
src/auth/pool_auth.c diff | blob | blame | history
Clustering tool for PostgreSQL