Quick Links

Re: Any advantage of using SSL with a certificate of authority?

From:	John R Pierce <pierce(at)hogranch(dot)com>
To:	pgsql-general(at)postgresql(dot)org
Subject:	Re: Any advantage of using SSL with a certificate of authority?
Date:	2013-11-26 20:30:08
Message-ID:	529504D0.50706@hogranch.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

On 11/26/2013 12:16 PM, Robin wrote:
>
> 1. A self-signed certificate can be issued by anybody, there is no
> way of authenticating the issuer.
> 2. Distributing self-signed certificates becomes a pain - if signed
> by a CA, its easy to lodge your public key where everybody can
> find it, and knows where to look for it.
> 3. Maintenance becomes a problem
>

while that's all true for public https or whatever, none of this applies
to a point to point connection like libpq -> postmaster.

--
john r pierce 37N 122W
somewhere on the middle of the left coast

In response to

Re: Any advantage of using SSL with a certificate of authority? at 2013-11-26 20:16:45 from Robin

Responses

Re: Any advantage of using SSL with a certificate of authority? at 2013-11-26 21:48:33 from Bruce Momjian

Browse pgsql-general by date

	From	Date	Subject
Next Message	Merlin Moncure	2013-11-26 20:30:14	Re: tracking scripts...
Previous Message	Shaun Thomas	2013-11-26 20:20:00	Re: Re: corruption issue after server crash - ERROR: unexpected chunk number 0