| From: | Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at> |
|---|---|
| To: | Ravi GH <mails2ravi(at)gmail(dot)com>, depesz(at)depesz(dot)com |
| Cc: | Pgsql-admin <pgsql-admin(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: PG Database Encryption |
| Date: | 2023-05-31 18:46:11 |
| Message-ID: | fb0189a3cf3a3425a393aead588fb2582538cb0d.camel@cybertec.at |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Mon, 2023-05-29 at 17:28 +0530, Ravi GH wrote:
> I tried the suggested option of TDE , to enable Cluster Level Encryption. I had followed the
> "Installation from Source Code" method with --with-ssl=openssl parameter to ./configure during build.
>
> 1. Please confirm the enabling encryption is possible only by install from source with --with-ssl parameter?
Sounds right.
> 2. I could enable encryption using PG 12 with patched version provided at here , do we need to purchase
> the product or is it possible with Postgres source shared at https://www.postgresql.org/ftp/source/v14.7/
It is free open source.
You can get the patched version for different releases here:
https://github.com/cybertec-postgresql/postgres/tags
> We are using Ubuntu 22 and we will prefer to go with TDE cluster level encryption, please advise can we try
> to implement it by install from source ( with shared source at https://www.postgresql.org/ftp/source/v14.7 )
> or need to purchasing TDE patched version is mandatory to enable cluster level encryption?
That should be here: https://github.com/cybertec-postgresql/postgres/releases/tag/PG_14_7_TDE_1_1_3
Yours,
Laurenz Albe
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Nikhil Shetty | 2023-06-01 11:40:22 | Question on SSL certificate expiry |
| Previous Message | Erik Wienhold | 2023-05-30 19:26:51 | Re: xlog min recovery request 7C5C/96D5C550 is past current point |