| From: | Josh Berkus <josh(at)agliodbs(dot)com> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Cc: | Magnus Hagander <magnus(at)hagander(dot)net>, "Henry B(dot) Hotz" <hotz(at)jpl(dot)nasa(dot)gov> |
| Subject: | Re: Fwd: [PATCHES] Preliminary GSSAPI Patches |
| Date: | 2007-05-01 20:00:45 |
| Message-ID: | 200705011300.46075.josh@agliodbs.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Magnus,
> I'd also vote for changing the name of the "non encrypted" version to
> just "gss" instead of "gss-np".
I don't. We'll want to support GSS encryption once we have the code, so we
should leave the namespace open to address that.
> Oh, and I do think putting in GSSAPI authentication only (and not
> encryption) is the way to go for now, since we can do encryption with
> OpenSSL. It'll make the changes localized to just the authentication.
For now, yes. In the long run, we want to provide users with other methods
of encrypted connections than the rather flaky and
not-available-on-every-platform OpenSSL.
--
--Josh
Josh Berkus
PostgreSQL @ Sun
San Francisco
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2007-05-01 20:06:06 | Re: Fwd: [PATCHES] Preliminary GSSAPI Patches |
| Previous Message | Heikki Linnakangas | 2007-05-01 19:59:11 | Re: Heap page diagnostic functions |