| From: | Chris Browne <cbbrowne(at)acm(dot)org> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: TODO: GNU TLS |
| Date: | 2007-01-01 22:07:47 |
| Message-ID: | 60d55yz9ho.fsf@dba2.int.libertyrms.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
jd(at)commandprompt(dot)com ("Joshua D. Drake") writes:
>> The reason I wanted to use PGP is that I already have a PGP key. X.509
>> certificates are far too complicated (a certificate authority is a
>> useless extra step in my case).
>
> Complete side note but one feature that I brought up to my team a
> potentially useful would be to allow the use of ssh keys for
> authentication.
>
> SSH keys are far more prevalent, and they are understood even at the
> medium corporate level.
I haven't discussed this with Afilias folk, but that sure sounds like
an excellent thing to me. ssh keys are already in widespread use for
other forms of authentication; this seems an excellent re-use.
X.509 might be nice, too, eventually; ssh keys would be immediately
useful.
--
"cbbrowne","@","linuxfinances.info"
http://cbbrowne.com/info/sap.html
Evil Overlords tend to get overthrown due to overly baroque plans with
obvious fatal errors. Follow the "Rules of the Evil Overlord," and
you need not fear heroic opposition, whether that hero be James Bond,
Flash Gordon, or a little hobbit named Frodo.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2007-01-01 22:53:35 | Reverse-sort indexes and NULLS FIRST/LAST sorting |
| Previous Message | Jim C. Nasby | 2007-01-01 21:54:21 | Status of Fix Domain Casting TODO |