Which PostgreSQL password authentication method stores passwords in a hashed format using MD5 and requires the client to send an MD5-hashed password for verification?
Think about which method hashes the password before sending it over the network.
The md5 method stores passwords hashed with MD5 and requires the client to send an MD5 hash of the password, providing better security than sending plain text.
Given the following line in pg_hba.conf:
host all all 192.168.1.0/24 scram-sha-256
What does this configuration enforce for connections from the 192.168.1.0/24 network?
Look at the authentication method specified at the end of the line.
The scram-sha-256 method requires clients to authenticate using the SCRAM-SHA-256 password mechanism, which is more secure than MD5.
Which of the following pg_hba.conf lines contains a syntax error?
Check the order and validity of authentication methods in the line.
Option D incorrectly combines two authentication methods password and md5. Only one method should be specified.
You want to configure PostgreSQL to use the most secure password authentication method that is widely supported by clients, while minimizing performance overhead. Which method should you choose?
Consider modern security standards and client support.
scram-sha-256 is the most secure widely supported method, providing strong password hashing and challenge-response authentication with reasonable performance.
A PostgreSQL server is configured to use scram-sha-256 authentication in pg_hba.conf. A client attempts to connect but receives an authentication failure. Which of the following is the most likely cause?
Think about password storage format compatibility with authentication method.
If the user's password is stored as an MD5 hash, SCRAM-SHA-256 authentication will fail because it requires passwords stored in SCRAM format.