Postgres Pro
Downloads
Home   >   mailing lists

Re: openssl heartbleed - Mailing list pgsql-general

From Ovnicraft
Subject Re: openssl heartbleed
Date
Msg-id CA+16coMT2u2bkxqH4jV_i1+VZZLrPn_4xR4c1=Y7habMwRoBFw@mail.gmail.com
Whole thread Raw
In response to openssl heartbleed  ("Gabriel E. Sánchez Martínez"<gabrielesanchez@gmail.com>)
List pgsql-general
Tree view



On Wed, Apr 9, 2014 at 10:54 AM, "Gabriel E. Sánchez Martínez" <gabrielesanchez@gmail.com> wrote:
Hi all,

Our server is running Ubuntu Server 13.10 (we will soon upgrade to 14.04) and PostgreSQL 9.1.  We use certificates for all client authentication on remote connections.  The server certificate is self-signed.  In light of the heartbleed bug, should we create a new server certificate and replace all client certificates?  My guess is yes.

I highly recommend you, update your server, revoke the certificates and regenerate them.


Regards,
 

Regards,
Gabriel


--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general



--
Cristian Salamea
@ovnicraft

pgsql-general by date:

Previous
From: Steve Crawford
Date:
Subject: Re: openssl heartbleed
Next
From: Paul Jungwirth
Date:
Subject: Refresh Postgres SSL certs?