From fc44992531cd22f59a0d4ef254f9751d45eaede1 Mon Sep 17 00:00:00 2001 From: brummbaer Date: Sat, 5 Mar 2022 21:17:02 +0100 Subject: [PATCH 1/2] PostgreSQL downgrade encryption from SCRAM to md5 --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index d11ed87..06dd972 100644 --- a/README.md +++ b/README.md @@ -10,6 +10,8 @@ Available authorization method are `trust`, `password` and `md5`. Due to code size limit, `md5` method may be disabled in compilation time, decreasing code size for Arduino by some kilobytes. +If `md5` is specified as a method in `pg_hba.conf` but the user's password on the PostgreSQL server is encrypted for SCRAM, then SCRAM-based authentication will automatically be chosen instead. Consider downgrading password encryption in PostgreSQL from SCRAM to md5 in `postgres.conf`. Then renew user passwords if allready created. + All methods are asynchronous, but sometimes may block for a while in case of poor network connection. As column names and notifications are rarely needed in microcontrollers applications, may be disabled. From 2749ac8b47c782dee9d21e163e9eedfe706da1ba Mon Sep 17 00:00:00 2001 From: brummbaer Date: Sat, 5 Mar 2022 21:29:36 +0100 Subject: [PATCH 2/2] consider downgrading from SCRAM2md5 --- README.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 06dd972..592d109 100644 --- a/README.md +++ b/README.md @@ -10,7 +10,10 @@ Available authorization method are `trust`, `password` and `md5`. Due to code size limit, `md5` method may be disabled in compilation time, decreasing code size for Arduino by some kilobytes. -If `md5` is specified as a method in `pg_hba.conf` but the user's password on the PostgreSQL server is encrypted for SCRAM, then SCRAM-based authentication will automatically be chosen instead. Consider downgrading password encryption in PostgreSQL from SCRAM to md5 in `postgres.conf`. Then renew user passwords if allready created. +If `md5` is specified as a method in `pg_hba.conf` but the user's password on the PostgreSQL server is encrypted for SCRAM, +then SCRAM-based authentication will automatically be chosen instead. +As a workaround, consider downgrading password encryption in PostgreSQL from SCRAM to md5 in `postgres.conf`. +Then renew user passwords on PostgreSQL server if already created. All methods are asynchronous, but sometimes may block for a while in case of poor network connection.