Home > mailing lists

Re: [HACKERS] PostgreSQL - Weak DH group - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [HACKERS] PostgreSQL - Weak DH group
Date	July 14, 2017 00:30:25
Msg-id	10598.1499970625@sss.pgh.pa.us Whole thread Raw
In response to	Re: [HACKERS] PostgreSQL - Weak DH group (Heikki Linnakangas <hlinnaka@iki.fi>)
Responses	Re: [HACKERS] PostgreSQL - Weak DH group
List	pgsql-hackers

Tree view

Heikki Linnakangas <hlinnaka@iki.fi> writes:
> I don't think this can be backpatched. It changes the default DH 
> parameters from 1024 bits to 2048 bits. That's a good thing for 
> security, but older clients might not support it, and would refuse to 
> connect or would fall back to something less secure.

Do we have any hard information about which versions of which clients
might not support that?  (In particular I'm wondering if any still exist
in the wild.)
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 14 July 2017, 00:27:39
Subject: [HACKERS] CAST vs ::

From: Robert Haas
Date: 14 July 2017, 01:13:33
Subject: Re: [HACKERS] PostgreSQL - Weak DH group

Re: [HACKERS] PostgreSQL - Weak DH group - Mailing list pgsql-hackers

Previous

Next