| From: | Magnus Hagander <magnus(at)hagander(dot)net> |
|---|---|
| To: | pgsql-committers(at)postgresql(dot)org |
| Subject: | pgsql: Base the default SSL ciphers on DEFAULT instead of ALL |
| Date: | 2013-01-17 14:07:43 |
| Message-ID: | E1Tvq87-0003KT-3l@gemulon.postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Base the default SSL ciphers on DEFAULT instead of ALL
It's better to start from what the OpenSSL people consider a good
default and then remove insecure things (low encryption, exportable
encryption and md5 at this point) from that, instead of starting
from everything that exists and remove from that. We trust the
OpenSSL people to make good choices about what the default is.
Branch
------
master
Details
-------
http://git.postgresql.org/pg/commitdiff/bba486f372ffa28d6a0b70a6b0ad7065429213d0
Modified Files
--------------
src/backend/utils/misc/guc.c | 2 +-
src/backend/utils/misc/postgresql.conf.sample | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Heikki Linnakangas | 2013-01-17 14:52:11 | pgsql: Make GiST indexes on-disk compatible with 9.2 again. |
| Previous Message | Magnus Hagander | 2013-01-17 13:45:55 | pgsql: Truncate filenames in the leadning end in pg_basebackup verbose |