Home > mailing lists

Re: SSL renegotiation - Mailing list pgsql-hackers

From	Noah Misch
Subject	Re: SSL renegotiation
Date	July 13, 2013 03:52:00
Msg-id	20130713005152.GA1219036@tornado.leadboat.com Whole thread Raw
In response to	Re: SSL renegotiation (Alvaro Herrera <alvherre@2ndquadrant.com>)
Responses	Re: SSL renegotiation Re: SSL renegotiation
List	pgsql-hackers

Tree view

On Fri, Jul 12, 2013 at 04:32:52PM -0400, Alvaro Herrera wrote:
> Now, should we support the 0.9.6-and-earlier mechanism?  My inclination
> is no; even RHEL 3, the oldest supported Linux distribution, uses 0.9.7
> (Heck, even Red Hat Linux 9, released on 2003).  To see OpenSSL 0.9.6
> you need to go back to Red Hat Linux 7.2, released on 2001 using a Linux
> kernel 2.4.  Surely no one in their right mind would use a current
> Postgres release on such an ancient animal.

Agreed.  The OpenSSL Project last applied a security fix to 0.9.6 over eight
years ago.  Compatibility with 0.9.6 has zero or negative value.

-- 
Noah Misch
EnterpriseDB                                 http://www.enterprisedb.com

pgsql-hackers by date:

From: Mark Wong
Date: 13 July 2013, 02:42:27
Subject: Re: [Review] Add SPI_gettypmod() to return a field's typemod from a TupleDesc / audit of [E] TODO items

From: Josh Berkus
Date: 13 July 2013, 04:04:48
Subject: --with-libedit-preferred is bad design

Re: SSL renegotiation - Mailing list pgsql-hackers

Previous

Next