| From: | Stefan Kaltenbrunner <stefan(at)kaltenbrunner(dot)cc> |
|---|---|
| To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
| Cc: | pgsql-hackers(at)postgresql(dot)org, "Victor B(dot) Wagner" <vitus(at)cryptocom(dot)ru> |
| Subject: | Re: [PATCHES] Backend SSL configuration enhancement |
| Date: | 2006-08-31 09:29:38 |
| Message-ID: | 44F6AC02.9050600@kaltenbrunner.cc |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
Peter Eisentraut wrote:
> Victor B. Wagner wrote:
>> First one is useful if for some reason some ciphers supported by
>> OpenSSL is not permitted to use in the particular network, or if
>> there is need to use ciphersuites which are not included into default
>> ciphersuite list, now compiled into PostgreSQL.
>
> Do you have specific examples where that might be the case?
this is btw. something that is available in most daemons utilizing
openssl - one can disable weak ciphers (which might not even be known as
weak at the time the defaults where set) or ciphers not authorized for
certain usage scenarios by this means.
Stefan
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Teodor Sigaev | 2006-08-31 09:48:09 | Re: GIN FailedAssertions on Itanium2 with Intel compiler |
| Previous Message | Victor B. Wagner | 2006-08-31 09:19:44 | Re: [PATCHES] Backend SSL configuration enhancement |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2006-08-31 13:55:53 | Re: [HACKERS] Updatable views |
| Previous Message | Victor B. Wagner | 2006-08-31 09:19:44 | Re: [PATCHES] Backend SSL configuration enhancement |