| From: | Michael Paquier <michael(at)paquier(dot)xyz> |
|---|---|
| To: | Heikki Linnakangas <hlinnaka(at)iki(dot)fi> |
| Cc: | Postgres hackers <pgsql-hackers(at)postgresql(dot)org>, Robert Haas <robertmhaas(at)gmail(dot)com>, Magnus Hagander <magnus(at)hagander(dot)net>, Stephen Frost <sfrost(at)snowman(dot)net>, Bruce Momjian <bruce(at)momjian(dot)us> |
| Subject: | Re: SCRAM with channel binding downgrade attack |
| Date: | 2018-05-28 19:08:50 |
| Message-ID: | 20180528190850.GE27845@paquier.xyz |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-www |
On Mon, May 28, 2018 at 12:26:37PM +0300, Heikki Linnakangas wrote:
> Sounds good.
Okay. Done this way as attached. If the backend forces anything else
than SCRAM then the client gets an immediate error if channel binding is
required, without waiting for the password prompt.
--
Michael
| Attachment | Content-Type | Size |
|---|---|---|
| 0001-Rework-scram_channel_binding-to-protect-from-downgra.patch | text/x-diff | 25.3 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Laurenz Albe | 2018-05-28 19:10:43 | Re: PGXS fails to byte-compile pgsql-ogr-fdw |
| Previous Message | Alvaro Herrera | 2018-05-28 16:14:28 | Re: Problem while updating a foreign table pointing to a partitioned table on foreign server |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Justin Pryzby | 2018-05-29 23:33:41 | request wiki.postgres editor privs |
| Previous Message | Heikki Linnakangas | 2018-05-28 09:26:37 | Re: SCRAM with channel binding downgrade attack |