Re: BUG #4340: SECURITY: Is SSL Doing Anything?

Поиск
Список
Период
Сортировка
От Tom Lane
Тема Re: BUG #4340: SECURITY: Is SSL Doing Anything?
Дата
Msg-id 1667.1219161658@sss.pgh.pa.us
обсуждение исходный текст
Ответ на Re: BUG #4340: SECURITY: Is SSL Doing Anything?  (Tom Lane <tgl@sss.pgh.pa.us>)
Ответы Re: BUG #4340: SECURITY: Is SSL Doing Anything?  (Dan Kaminsky <dan@doxpara.com>)
Список pgsql-bugs
Дерево обсуждения 
Dan Kaminsky <dan@doxpara.com> writes:
> My question has been:  When you attempt to create an SSL connection to
> database.backend.com, do you actually validate that:

> 1) The subject name of the certificate you're connecting to is
> database.backend.com, and
> 2) At least the basic checks (expiration, chaining back to a valid root)
> occur?

[ shrug... ] We do whatever OpenSSL's default validation behavior is.
If that's inadequate you probably ought to be taking it up with them,
instead of trying to get downstream projects to fix it one at a time.

            regards, tom lane

В списке pgsql-bugs по дате отправления:

Предыдущее
От: Gregory Stark
Дата:
Сообщение: Re: BUG #4340: SECURITY: Is SSL Doing Anything?
Следующее
От: Dan Kaminsky
Дата:
Сообщение: Re: BUG #4340: SECURITY: Is SSL Doing Anything?