Home > mailing lists

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

From	Andrew Dunstan
Subject	Re: Spoofing as the postmaster
Date	December 22, 2007 14:55:22
Msg-id	476D335A.9070801@dunslane.net Whole thread Raw
In response to	Re: Spoofing as the postmaster (Peter Eisentraut <peter_e@gmx.net>)
Responses	Re: Spoofing as the postmaster (Peter Eisentraut <peter_e@gmx.net>) Re: Spoofing as the postmaster (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

Peter Eisentraut wrote:
> Bruce Momjian wrote:
>   
>> The fundamental problem is that because we don't require root, any user's
>> postmaster or pretend postmaster is as legitimate as anyone else's.  SSL
>> certificates add legitimacy checks for TCP, but not for unix domain
>> sockets.
>>     
>
> Wouldn't SSL work over Unix-domain sockets as well?  The API only deals with 
> file descriptors.
>
>   

But we don't check the SSL cert's credentials in the client, AFAIK. That 
means that postmaster spoofer could just as easily spoof SSL. 
Communications between the client and the endpoint will be protected, 
but there is no protection from a man in the middle attack, which is 
what this is.

cheers

andrew

pgsql-hackers by date:

From: Peter Eisentraut
Date: 22 December 2007, 14:44:25
Subject: Re: Spoofing as the postmaster

From: Peter Eisentraut
Date: 22 December 2007, 15:13:10
Subject: Re: Spoofing as the postmaster

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

Previous

Next