Home > mailing lists

Re: [HACKERS] Some thoughts about SCRAM implementation - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: [HACKERS] Some thoughts about SCRAM implementation
Date	April 15, 2017 01:20:33
Msg-id	0711fe6c-557d-806c-14b4-f363b65e822b@2ndquadrant.com Whole thread Raw
In response to	Re: [HACKERS] Some thoughts about SCRAM implementation (Magnus Hagander <magnus@hagander.net>)
Responses	Re: [HACKERS] Some thoughts about SCRAM implementation (Greg Stark <stark@mit.edu>)
List	pgsql-hackers

Tree view

On 4/11/17 09:03, Magnus Hagander wrote:
> I would expect most enterprise customers who care about MITM protection
> are already using either TLS or ipsec to cover that already. They have
> benefit from the other parts of SCRAM, but they've already solved those
> problems.

Yeah, I think if you're concerned about MITM then you would also be
concerned about MITM siphoning off your data.  So you should be using
TLS and then you don't need channel binding.

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Petr Jelinek
Date: 15 April 2017, 01:11:02
Subject: Re: [HACKERS] logical replication and PANIC during shutdowncheckpoint in publisher

From: Jeff Janes
Date: 15 April 2017, 01:23:10
Subject: [HACKERS] PANIC in pg_commit_ts slru after crashes

Re: [HACKERS] Some thoughts about SCRAM implementation - Mailing list pgsql-hackers

Previous

Next