Home > mailing lists

pgsql: Base the default SSL ciphers on DEFAULT instead of ALL - Mailing list pgsql-committers

From	Magnus Hagander
Subject	pgsql: Base the default SSL ciphers on DEFAULT instead of ALL
Date	January 17, 2013 17:07:48
Msg-id	E1Tvq87-0003KT-3l@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

Base the default SSL ciphers on DEFAULT instead of ALL

It's better to start from what the OpenSSL people consider a good
default and then remove insecure things (low encryption, exportable
encryption and md5 at this point) from that, instead of starting
from everything that exists and remove from that. We trust the
OpenSSL people to make good choices about what the default is.

Branch
------
master

Details
-------
http://git.postgresql.org/pg/commitdiff/bba486f372ffa28d6a0b70a6b0ad7065429213d0

Modified Files
--------------
src/backend/utils/misc/guc.c                  |    2 +-
src/backend/utils/misc/postgresql.conf.sample |    2 +-
2 files changed, 2 insertions(+), 2 deletions(-)

pgsql-committers by date:

From: Magnus Hagander
Date: 17 January 2013, 16:46:00
Subject: pgsql: Make size-output fixed length in pg_basebackup verbose mode

From: Heikki Linnakangas
Date: 17 January 2013, 17:52:16
Subject: pgsql: Make GiST indexes on-disk compatible with 9.2 again.

pgsql: Base the default SSL ciphers on DEFAULT instead of ALL - Mailing list pgsql-committers

Previous

Next