Home > mailing lists

Re: A solution to the SSL customizing problem - Mailing list pgsql-jdbc

From	Kris Jurka
Subject	Re: A solution to the SSL customizing problem
Date	October 12, 2004 06:48:20
Msg-id	Pine.BSO.4.56.0410111451040.19235@leary.csoft.net Whole thread Raw
In response to	Re: A solution to the SSL customizing problem (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-jdbc

Tree view

On Mon, 11 Oct 2004, Tom Lane wrote:

> Ulrich Meis <kenobi@halifax.rwth-aachen.de> writes:
> > I propose a different solution.
>
> One small question --- have you checked that this behaves reasonably
> with both a CVS-tip postmaster and prior releases?  CVS tip does do
> certificate presentation and checking, whereas that stuff was
> mistakenly disabled in 7.4.  (I think all the relevant changes are
> present in 8.0beta3, but not earlier.)
>

The problem he's talking about is Java's default verification of the
server certificate by the client, not presentation of a client certificate
to be checked by the server.  Currently the JDBC driver does not handle
client certificates at all.

Kris Jurka

pgsql-jdbc by date:

From: Ulrich Meis
Date: 12 October 2004, 06:32:47
Subject: Re: A solution to the SSL customizing problem

From: Oliver Jowett
Date: 12 October 2004, 06:58:00
Subject: Re: A solution to the SSL customizing problem

Re: A solution to the SSL customizing problem - Mailing list pgsql-jdbc

Previous

Next