Home > mailing lists

Re: Successor of MD5 authentication, let's use SCRAM - Mailing list pgsql-hackers

From	Daniel Farina
Subject	Re: Successor of MD5 authentication, let's use SCRAM
Date	October 14, 2012 07:00:38
Msg-id	CAAZKuFaTJDdQqecB=ZuRNp9+6eGNKRZuJoCkNoM__LV9CFb2RQ@mail.gmail.com Whole thread Raw
In response to	Re: Successor of MD5 authentication, let's use SCRAM (Andrew Dunstan <andrew@dunslane.net>)
Responses	Re: Successor of MD5 authentication, let's use SCRAM (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

On Sat, Oct 13, 2012 at 7:00 AM, Andrew Dunstan <andrew@dunslane.net> wrote:
> Does Debian they create a self-signed certificate? If so, count me as
> unimpressed. I'd argue that's worse than doing nothing. Here's what the docs
> say (rightly) about such certificates:

Debian will give you a self signed certificate by default.  Protecting
against passive eavesdroppers is not an inconsiderable benefit to get
for "free", and definitely not a marginal attack technique: it's
probably the most common.

For what they can possibly know about the end user, Debian has it right here.

-- 
fdr

pgsql-hackers by date:

From: Andrew Dunstan
Date: 14 October 2012, 05:46:37
Subject: Re: parallel pg_dump

From: Fujii Masao
Date: 14 October 2012, 07:26:34
Subject: Re: pg_stat_lwlocks view - lwlocks statistics, round 2

Re: Successor of MD5 authentication, let's use SCRAM - Mailing list pgsql-hackers

Previous

Next