From: | "Adam Lang" <aalang(at)rutgersinsurance(dot)com> |
---|---|
To: | <pgsql-php(at)postgresql(dot)org> |
Subject: | Re: php, postgres, ssl |
Date: | 2001-03-22 16:14:40 |
Message-ID: | 009601c0b2eb$33545f40$330a0a0a@rutgersinsurance.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-php |
Yeah, you guys have serious problems. You are asking to get cracked pretty
bad... especially being a university! You guys are prime targets.
If you guys must use public internet lines for data transfer. Setup private
networks over it using IPSEC. Freeswan is an Open Source IPSEC server.
http://www.xs4all.nl/~freeswan/
This way, all traffic is encrypted over the Internet. A LOT safer. Also,
then you don't need to worry about ssl for postgres. All traffic going over
that tunnel will be safe.
Adam Lang
Systems Engineer
Rutgers Casualty Insurance Company
http://www.rutgersinsurance.com
----- Original Message -----
From: "Martin A. Marques" <martin(at)math(dot)unl(dot)edu(dot)ar>
To: <pgsql-php(at)postgresql(dot)org>
Sent: Thursday, March 22, 2001 9:53 AM
Subject: Re: [PHP] php, postgres, ssl
> El Jue 22 Mar 2001 10:45, escribiste:
> > The argument then would probably be, "why is your web app connecting to
a
> > database across the public Internet"?
> >
> > I'd assume that is not the safest, nor smartest, thing to do. There are
a
> > lot of problems with that setup.
>
> That is soething that we are trying to change, but it is very difficult.
Try
> to convince the politicians on the university that we need a public and
> private net with firewalls is a hard thing.
> Some people (not my boss) think that if you get cracked, you don't have to
> worry, because it's worst.
> With that kind of thinking, I can't do much.
>
> Saludos... :-)
>
> --
> System Administration: It's a dirty job,
> but someone told me I had to do it.
> -----------------------------------------------------------------
> Martín Marqués email: martin(at)math(dot)unl(dot)edu(dot)ar
> Santa Fe - Argentina http://math.unl.edu.ar/~martin/
> Administrador de sistemas en math.unl.edu.ar
> -----------------------------------------------------------------
>
> ---------------------------(end of broadcast)---------------------------
> TIP 2: you can get off all lists at once with the unregister command
> (send "unregister YourEmailAddressHere" to majordomo(at)postgresql(dot)org)
From | Date | Subject | |
---|---|---|---|
Next Message | Brent R. Matzelle | 2001-03-22 16:25:26 | Re: php, postgres, ssl |
Previous Message | Martin A. Marques | 2001-03-22 14:53:57 | Re: php, postgres, ssl |