| From: | Andrew Sullivan <ajs(at)crankycanuck(dot)ca> |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: PKI/SSL Client/Server Certificate Authentication |
| Date: | 2006-01-13 21:15:29 |
| Message-ID: | 20060113211529.GC10098@phlogiston.dyndns.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Fri, Jan 13, 2006 at 12:19:38PM -0500, Brian A. Seklecki wrote:
> In short, it's a deterrent to hackers and a convenience to admins. But we
Not just that. Unless something big has changed when I wasn't
looking, the jdbc driver can't use the .pgpass mechanism yet; but it
_can_ use SSL, except that it doesn't have the ability to validate
via certs. So there'd be another potential use case for this. I
briefly toyed with trying to find someone to implement cert-based
authentication, but found I had other things more pressing (so the
TODO fell off the end of my list).
A
--
Andrew Sullivan | ajs(at)crankycanuck(dot)ca
I remember when computers were frustrating because they *did* exactly what
you told them to. That actually seems sort of quaint now.
--J.D. Baldwin
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Sally Sally | 2006-01-13 22:20:07 | Unable to connect to a specific database |
| Previous Message | Tom Lane | 2006-01-13 19:49:56 | Re: OIDS problem |