Home > mailing lists

Re: SCRAM with channel binding downgrade attack - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: SCRAM with channel binding downgrade attack
Date	October 5, 2018 20:53:34
Msg-id	b0bed5b2-2ab7-764e-437d-613d5094294f@2ndquadrant.com Whole thread Raw
In response to	Re: SCRAM with channel binding downgrade attack (Heikki Linnakangas <hlinnaka@iki.fi>)
Responses	Re: SCRAM with channel binding downgrade attack (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

On 23/05/2018 08:46, Heikki Linnakangas wrote:
> "tls-unique" and "tls-server-end-point" are overly technical to users. 
> They don't care which one is used, there's no difference in security. 

A question was raised about this in a recent user group meeting.

When someone steals the server certificate from the real database server
and sets up a MITM with that certificate, this would pass
tls-server-end-point channel binding, because both the MITM and the real
server have the same certificate.  But with tls-unique they would have
different channel binding data, so the channel binding would detect this.

Is that not correct?

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Laurenz Albe
Date: 05 October 2018, 20:34:34
Subject: Re: Libpq support to connect to standby server as priority

From: Amit Khandekar
Date: 05 October 2018, 20:58:00
Subject: Re: TupleTableSlot abstraction

Re: SCRAM with channel binding downgrade attack - Mailing list pgsql-hackers

Previous

Next