Home > mailing lists

Re: BUG #4340: SECURITY: Is SSL Doing Anything? - Mailing list pgsql-bugs

From	Andrew Sullivan
Subject	Re: BUG #4340: SECURITY: Is SSL Doing Anything?
Date	August 19, 2008 19:52:16
Msg-id	20080819195207.GT9771@commandprompt.com Whole thread Raw
In response to	Re: BUG #4340: SECURITY: Is SSL Doing Anything? (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

On Tue, Aug 19, 2008 at 02:57:55PM -0400, Tom Lane wrote:
> To impose such a requirement, we'd have to forbid naming the server
> by IP address or via a domain-search-path abbreviation.

If you ask me, the second idea at least is a good one anyway.  In an
SSL context, search paths are a terrible idea.  (Frankly, they're a
terrible idea outside that context also, but that ship sailed some
time ago.)

A

--
Andrew Sullivan
ajs@commandprompt.com
+1 503 667 4564 x104
http://www.commandprompt.com/

pgsql-bugs by date:

From: Dan Kaminsky
Date: 19 August 2008, 19:50:13
Subject: Re: BUG #4340: SECURITY: Is SSL Doing Anything?

From: Dan Kaminsky
Date: 19 August 2008, 20:04:32
Subject: Re: BUG #4340: SECURITY: Is SSL Doing Anything?

Re: BUG #4340: SECURITY: Is SSL Doing Anything? - Mailing list pgsql-bugs

Previous

Next