| From: | Michael Paquier <michael(at)paquier(dot)xyz> |
|---|---|
| To: | Magnus Hagander <magnus(at)hagander(dot)net> |
| Cc: | Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, Bruce Momjian <bruce(at)momjian(dot)us>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>, Stephen Frost <sfrost(at)snowman(dot)net> |
| Subject: | Re: SCRAM with channel binding downgrade attack |
| Date: | 2018-05-23 09:10:36 |
| Message-ID: | 20180523091036.GA2309@paquier.xyz |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-www |
On Wed, May 23, 2018 at 05:56:19PM +0900, Michael Paquier wrote:
> OK, being able to introduce a new default if necessary is a good point.
> Let's introduce a "require" mode then, which uses tls-unique
> underground, while "tls-unique" and "tls-server-end-point" are
> documented as developer-oriented.
By the way, if somebody could review the latest version of the patch
before I write a new version and agrees with the concept introduced
would be nice.. Adding one option is simple enough, making sure that we
agree that the patch is on good tracks is harder.
--
Michael
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2018-05-23 09:15:28 | Re: SCRAM with channel binding downgrade attack |
| Previous Message | Heikki Linnakangas | 2018-05-23 09:08:35 | Re: SCRAM with channel binding downgrade attack |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2018-05-23 09:15:28 | Re: SCRAM with channel binding downgrade attack |
| Previous Message | Heikki Linnakangas | 2018-05-23 09:08:35 | Re: SCRAM with channel binding downgrade attack |