Home > mailing lists

Re: using ssl some of the time - Mailing list pgsql-admin

From	Tom Lane
Subject	Re: using ssl some of the time
Date	July 24, 2003 21:29:41
Msg-id	20729.1059082143@sss.pgh.pa.us Whole thread Raw
In response to	Re: using ssl some of the time (Bruce Momjian <pgman@candle.pha.pa.us>)
Responses	Re: using ssl some of the time (Bruce Momjian <pgman@candle.pha.pa.us>)
List	pgsql-admin

Tree view

> Charles Hornberger wrote:
>> Just a quick follow-up to share one (!) data point, which looks to me
>> like it indicates that SSL encryption/decryption is pretty expensive on
>> one of our Sun Ultra 5 boxes. The following query ("select * from wp")
>> generates ~270K of output. When executed via a psql client that's
>> connected over a non-encrypted link, it takes 0.7 seconds; over an
>> encrypted link, it takes more than 10 times that long.

I suspect most of this is from the ridiculously small renegotiation
interval we put into 7.3.  Try increasing RENEGOTIATION_LIMIT in
src/backend/libpq/be-secure.c (we've bumped it to 512 meg for 7.4).

            regards, tom lane

pgsql-admin by date:

From: Bruce Momjian
Date: 24 July 2003, 20:45:02
Subject: Re: using ssl some of the time

From: Bruce Momjian
Date: 24 July 2003, 21:53:32
Subject: Re: using ssl some of the time

Re: using ssl some of the time - Mailing list pgsql-admin

Previous

Next