Quick Links

Re: Future of krb5 authentication

From:	Stephen Frost <sfrost(at)snowman(dot)net>
To:	Magnus Hagander <magnus(at)hagander(dot)net>
Cc:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Heikki Linnakangas <heikki(at)enterprisedb(dot)com>, Dave Page <dpage(at)postgresql(dot)org>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Future of krb5 authentication
Date:	2007-07-18 17:04:57
Message-ID:	20070718170457.GV4887@tamriel.snowman.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

* Magnus Hagander (magnus(at)hagander(dot)net) wrote:
> The maintenance part of me suggesting getting rid of krb5 is the
> smallest one. It being a non-standard protocol is more important, and
> the fact that the exchange breaks the libpq protocol and is not
> protected by SSL is the big reason.

Erm, it doesn't need to be protected by SSL? Breaking the libpq
protocol does kind of suck. I assume you're not requiring SSL for the
GSSAPI stuff...

Thanks,

Stephen

In response to

Re: Future of krb5 authentication at 2007-07-18 16:49:32 from Magnus Hagander

Responses

Re: Future of krb5 authentication at 2007-07-18 17:26:26 from Magnus Hagander

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Stephen Frost	2007-07-18 17:05:59	Re: Future of krb5 authentication
Previous Message	Magnus Hagander	2007-07-18 16:51:55	Re: Future of krb5 authentication