![]() ![]() I implemented the client connection parameter channel_binding in PostgreSQL 13, due to be released in late 2020 (PostgreSQL 13 is in beta now). In this article, I'll show you how to set up authentication using SCRAM with channel binding. Basic password authentication has several weaknesses which are addressed with SCRAM and channel binding. Then the server checks that it's the right one, and allows the client to connect. In basic password authentication, the connecting client simply sends the server the password. SCRAM with channel binding is a variation of password authentication that is almost as easy to use, but much more secure. Making security easy to use is crucial because hard-to-use security is likely to be neglected entirely.
0 Comments
Leave a Reply. |