Re: [HACKERS] Some thoughts about SCRAM implementation

Поиск

Список

Период

Сортировка

От	Peter Eisentraut
Тема	Re: [HACKERS] Some thoughts about SCRAM implementation
Дата	15 апреля 2017 г. 01:20:33
Msg-id	0711fe6c-557d-806c-14b4-f363b65e822b@2ndquadrant.com обсуждение исходный текст
Ответ на	Re: [HACKERS] Some thoughts about SCRAM implementation (Magnus Hagander <magnus@hagander.net>)
Ответы	Re: [HACKERS] Some thoughts about SCRAM implementation
Список	pgsql-hackers

Дерево обсуждения

On 4/11/17 09:03, Magnus Hagander wrote:
> I would expect most enterprise customers who care about MITM protection
> are already using either TLS or ipsec to cover that already. They have
> benefit from the other parts of SCRAM, but they've already solved those
> problems.

Yeah, I think if you're concerned about MITM then you would also be
concerned about MITM siphoning off your data.  So you should be using
TLS and then you don't need channel binding.

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

В списке pgsql-hackers по дате отправления:

Предыдущее

От: Petr Jelinek
Дата: 15 апреля 2017 г., 01:11:02
Сообщение: Re: [HACKERS] logical replication and PANIC during shutdowncheckpoint in publisher

Следующее

От: Jeff Janes
Дата: 15 апреля 2017 г., 01:23:10
Сообщение: [HACKERS] PANIC in pg_commit_ts slru after crashes

Вход в личный кабинет

Восстановление пароля

Подтверждение аккаунта

Изменение пароля

Re: [HACKERS] Some thoughts about SCRAM implementation

Предыдущее

Следующее