Home > mailing lists

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Spoofing as the postmaster
Date	December 29, 2007 02:10:36
Msg-id	27698.1198897818@sss.pgh.pa.us Whole thread Raw
In response to	Re: Spoofing as the postmaster (Bruce Momjian <bruce@momjian.us>)
Responses	Re: Spoofing as the postmaster (Bruce Momjian <bruce@momjian.us>) Re: Spoofing as the postmaster (Mark Mielke <mark@mark.mielke.cc>) Re: Spoofing as the postmaster (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

Bruce Momjian <bruce@momjian.us> writes:
> Agreed.  Requiring client root certificate checking is heavy-handed.

There seems to be some confusion here.  I didn't think anyone was
proposing that we force every installation to require client root
certificate checking.  What was under discussion (I thought) was
providing the ability for a DBA to *choose* to require it.

> Of course I am not sure anyone knows how to get that information from
> SSL.

Yeah, if OpenSSL doesn't support testing for this then the discussion
is moot...
        regards, tom lane

pgsql-hackers by date:

From: Bruce Momjian
Date: 29 December 2007, 01:35:48
Subject: Re: Spoofing as the postmaster

From: Bruce Momjian
Date: 29 December 2007, 02:23:22
Subject: Re: Spoofing as the postmaster

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

Previous

Next