RE: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords

["Mike Fratto" <mfratto () nwc com>]

> I thought the idea of the salt was to aid in expanding the 
> keyspace. Even though the salt is known (in traditional Unix 
> passwd/shadow/master.passwd databases, 

I am pretty sure the intent the salt is to make pre-computation of a
dictionaries infeasable due to storage requirements. It doesn't really add
to the keyspace because the salt is known and doesn't have to be guessed.