Update and clarify ssl_ciphers default
- Write HIGH:MEDIUM instead of DEFAULT:!LOW:!EXP for clarity.
- Order 3DES last to work around inappropriate OpenSSL default.
- Remove !MD5 and @STRENGTH, because they are irrelevant.
- Add clarifying documentation.
Effectively, the new default is almost the same as the old one, but it
is arguably easier to understand and modify.
Author: Marko Kreen <markokr@gmail.com>
Branch
------
master
Details
-------
http://git.postgresql.org/pg/commitdiff/32001ab0b7b4ee143e195f100543f531757a555b
Modified Files
--------------
doc/src/sgml/config.sgml | 65 +++++++++++++++++++++++--
src/backend/utils/misc/guc.c | 2 +-
src/backend/utils/misc/postgresql.conf.sample | 2 +-
3 files changed, 64 insertions(+), 5 deletions(-)
