Re: Any advantage of using SSL with a certificate of authority?

From: Bruce Momjian <bruce(at)momjian(dot)us>
To: John R Pierce <pierce(at)hogranch(dot)com>
Cc: pgsql-general(at)postgresql(dot)org
Subject: Re: Any advantage of using SSL with a certificate of authority?
Date: 2013-11-26 19:12:30
Message-ID: 20131126191230.GB6323@momjian.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

On Tue, Nov 26, 2013 at 10:33:47AM -0800, John R Pierce wrote:
> On 11/26/2013 10:24 AM, Jesus Rafael Sanchez Medrano wrote:
>
> Looking to implement SSL. Every tutorial/sample I have found uses self
> signed certificates. Would there be any advantage of using a certificate
> from a CA such as digicertor rapidssl?
>
>
>
> depends entirely on your use case.    generally, since you control both ends of
> a postgresql connection, there's no advantage to using signed certificates, but
> if you have your own CA already, by all means go ahead and use it.

Yes, definately use your private CA so you can verify the chain. It is
public CAs that are not useful in this case.

--
Bruce Momjian <bruce(at)momjian(dot)us> http://momjian.us
EnterpriseDB http://enterprisedb.com

+ Everyone has their own god. +

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Alvaro Herrera 2013-11-26 19:18:20 Re: AccessShareLock and Resource Contention
Previous Message Vick Khera 2013-11-26 18:43:17 Re: tracking scripts...