Quick Links

SSL (patch 6)

From:	Bear Giles <bgiles(at)coyotesong(dot)com>
To:	pgsql-patches(at)postgresql(dot)org
Subject:	SSL (patch 6)
Date:	2002-05-25 06:24:14
Message-ID:	200205250624.AAA25681@eris.coyotesong.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-patches

SSL support for ephemeral DH keys.

As the comment headers in be-secure.c discusses, EPH preserves
confidentiality even if the static private key (which is usually
kept unencrypted) is compromised.

Because of the value of this, common default values are hard-coded
to protect the confidentiality of the data even if an attacker
successfully deletes or modifies the external file.

Bear

Attachment	Content-Type	Size
patch6	text/plain	20.2 KB

Responses

Re: SSL (patch 6) at 2002-06-11 22:32:19 from Bruce Momjian
Re: SSL (patch 6) at 2002-06-14 04:31:25 from Bruce Momjian

Browse pgsql-patches by date

	From	Date	Subject
Next Message	Bear Giles	2002-05-25 06:37:11	SSL (patch 7)
Previous Message	Bear Giles	2002-05-25 04:30:13	SSL (patch 5)