| From: | Martijn van Oosterhout <kleptog(at)svana(dot)org> |
|---|---|
| To: | Andreas Pflug <pgadmin(at)pse-consulting(dot)de>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Practical impediment to supporting multiple SSL libraries |
| Date: | 2006-04-12 17:55:58 |
| Message-ID: | 20060412175558.GF22456@svana.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Wed, Apr 12, 2006 at 01:42:51PM -0400, Stephen Frost wrote:
> * Andreas Pflug (pgadmin(at)pse-consulting(dot)de) wrote:
> > I wonder if there are apps that actually use the ssl pointer, beyond
> > detection of encrypted connections. So interpreting the result as bool
> > would be sufficient.
>
> I'm not sure if there are apps out there which use it for anything but a
> bool but there's certainly a potential for apps to want to do things
> like get the DN of the remote server...
Strangly enough, the SSL code in libpq has stored the peer DN and CN
except it doesn't appear to be available to the client...
Have a nice day,
--
Martijn van Oosterhout <kleptog(at)svana(dot)org> http://svana.org/kleptog/
> Patent. n. Genius is 5% inspiration and 95% perspiration. A patent is a
> tool for doing 5% of the work and then sitting around waiting for someone
> else to do the other 95% so you can sue them.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Martijn van Oosterhout | 2006-04-12 17:59:30 | Re: Practical impediment to supporting multiple SSL libraries |
| Previous Message | Stephen Frost | 2006-04-12 17:42:51 | Re: Practical impediment to supporting multiple SSL libraries |