Version: 1.0.16

auth_delay

auth_delay causes the server to pause briefly before reporting authentication failure, making brute-force attacks on database passwords more difficult. Note: It does not help prevent denial-of-service attacks and may even exacerbate them, since the waiting process still consumes a connection while waiting to report authentication failure.

For this module to work, it must be loaded via shared_preload_libraries in postgresql.conf.

1. Configuration Parameters

auth_delay.milliseconds (int)

The number of milliseconds to wait before reporting authentication failure. The default value is 0.

These parameters must be set in postgresql.conf. Typical usage is:

postgresql.conf

shared_preload_libraries = 'auth_delay'

auth_delay.milliseconds = '500'

1. Configuration Parameters​

postgresql.conf​

1. Configuration Parameters

postgresql.conf