Home > mailing lists

should libpq also require TLSv1.2 by default? - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	should libpq also require TLSv1.2 by default?
Date	June 24, 2020 09:39:26
Msg-id	a9408304-4381-a5af-d259-e55d349ae4ce@2ndquadrant.com Whole thread Raw
Responses	Re: should libpq also require TLSv1.2 by default? (Daniel Gustafsson <daniel@yesql.se>)
List	pgsql-hackers

Tree view

In PG13, we raised the server-side default of ssl_min_protocol_version 
to TLSv1.2.  We also added a connection setting named 
ssl_min_protocol_version to libpq.  But AFAICT, the default value of the 
libpq setting is empty, so any protocol version will be accepted.  Is 
this what we wanted?  Should we raise the default in libpq as well?

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Peter Eisentraut
Date: 24 June 2020, 09:35:58
Subject: Allow CURRENT_ROLE in GRANTED BY

From: Maciek Sakrejda
Date: 24 June 2020, 10:11:45
Subject: Re: EXPLAIN: Non-parallel ancestor plan nodes exclude parallel worker instrumentation

should libpq also require TLSv1.2 by default? - Mailing list pgsql-hackers

Previous

Next