Home > mailing lists

Re: Supporting tls-server-end-point as SCRAM channel binding forOpenSSL 1.0.0 and 1.0.1 - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: Supporting tls-server-end-point as SCRAM channel binding forOpenSSL 1.0.0 and 1.0.1
Date	June 27, 2018 22:49:10
Msg-id	15d35905-6028-3b09-88af-d64b6619e525@2ndquadrant.com Whole thread Raw
In response to	Re: Supporting tls-server-end-point as SCRAM channel binding forOpenSSL 1.0.0 and 1.0.1 (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

On 6/23/18 17:09, Bruce Momjian wrote:
> On Wed, Jun  6, 2018 at 01:16:11PM -0700, Steven Fackler wrote:
>> TLS 1.3, (which is currently in a draft state, but is theoretically being
>> finalized soon) does not support the TLS channel binding algorithms [1]. From
> 
> Uh, according to this article, TLS 1.3 was finalized in March:
> 
>   https://www.theregister.co.uk/2018/03/27/with_tls_13_signed_off_its_implementation_time/

More generally, is our TLS 1.3 support sound?  For instance, I've read
about new cipher suites, so one question is, do the existing
configuration settings that control such things even still work?

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Konstantin Knizhnik
Date: 27 June 2018, 22:32:18
Subject: Monitoring time of fsyncing WALs

From: Peter Eisentraut
Date: 27 June 2018, 22:51:02
Subject: Re: assert in nested SQL procedure call in current HEAD

Re: Supporting tls-server-end-point as SCRAM channel binding forOpenSSL 1.0.0 and 1.0.1 - Mailing list pgsql-hackers

Previous

Next