Home > mailing lists

Re: OpenSSL key renegotiation with patched openssl - Mailing list pgsql-hackers

From	Dave Cramer
Subject	Re: OpenSSL key renegotiation with patched openssl
Date	November 27, 2009 20:25:34
Msg-id	4B1043B8.90104@fastcrypt.com Whole thread Raw
In response to	Re: OpenSSL key renegotiation with patched openssl (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

Tom Lane wrote:
> Dave Cramer <pg@fastcrypt.com> writes:
>   
>> Recently openssl has been patched to not renegotiate keys.
>> http://www.links.org/?p=780
>> After a certain amount of data has gone through a postgresql connection
>> the server will attempt to switch session keys.
>> What is the workaround (if any ) to avoid this in postgresql ?
>>     
>
> Install the updated openssl library.  Why are you bugging us about
> an openssl patch?
>
>             regards, tom lane
>   

After applying the updated openssl library slony dies, presumably
because the server requests a new session key

Dave

pgsql-hackers by date:

From: Tom Lane
Date: 27 November 2009, 20:17:06
Subject: Re: OpenSSL key renegotiation with patched openssl

From: Tom Lane
Date: 27 November 2009, 20:38:12
Subject: Re: OpenSSL key renegotiation with patched openssl

Re: OpenSSL key renegotiation with patched openssl - Mailing list pgsql-hackers

Previous

Next