| From: | Bruce Momjian <bruce(at)momjian(dot)us> |
|---|---|
| To: | John R Pierce <pierce(at)hogranch(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Any advantage of using SSL with a certificate of authority? |
| Date: | 2013-11-26 19:12:30 |
| Message-ID: | 20131126191230.GB6323@momjian.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Tue, Nov 26, 2013 at 10:33:47AM -0800, John R Pierce wrote:
> On 11/26/2013 10:24 AM, Jesus Rafael Sanchez Medrano wrote:
>
> Looking to implement SSL. Every tutorial/sample I have found uses self
> signed certificates. Would there be any advantage of using a certificate
> from a CA such as digicertor rapidssl?
>
>
>
> depends entirely on your use case. generally, since you control both ends of
> a postgresql connection, there's no advantage to using signed certificates, but
> if you have your own CA already, by all means go ahead and use it.
Yes, definately use your private CA so you can verify the chain. It is
public CAs that are not useful in this case.
--
Bruce Momjian <bruce(at)momjian(dot)us> http://momjian.us
EnterpriseDB http://enterprisedb.com
+ Everyone has their own god. +
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alvaro Herrera | 2013-11-26 19:18:20 | Re: AccessShareLock and Resource Contention |
| Previous Message | Vick Khera | 2013-11-26 18:43:17 | Re: tracking scripts... |