unclear wording re: spoofing prevention on network connections

From: PG Doc comments form <noreply(at)postgresql(dot)org>
To: pgsql-docs(at)lists(dot)postgresql(dot)org
Cc: edgecase14(at)gmail(dot)com
Subject: unclear wording re: spoofing prevention on network connections
Date: 2023-12-08 17:42:27
Message-ID: 170205734799.398198.8604828857536449354@wrigleys.postgresql.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-docs

The following documentation comment has been logged on the website:

Page: https://www.postgresql.org/docs/16/preventing-server-spoofing.html
Description:

When I read:
To prevent spoofing on TCP connections, either use SSL certificates and make
sure that clients check the server's certificate, or use GSSAPI encryption
(or both, if they're on separate connections).

It takes some thought to figure out what "separate connections" are being
referred to. Does it mean separate TLS connection and
non-tls-with-gssapi-encryption?

Responses

Browse pgsql-docs by date

  From Date Subject
Next Message Bruce Momjian 2023-12-09 16:29:00 Re: unclear wording re: spoofing prevention on network connections
Previous Message PG Doc comments form 2023-12-08 16:45:48 pg_stats entries visibility with RLS enabled