Re: Review:Patch: SSL: prefer server cipher order

Поиск
Список
Период
Сортировка
От Marko Kreen
Тема Re: Review:Patch: SSL: prefer server cipher order
Дата
Msg-id 20131116203752.GA21011@gmail.com
обсуждение исходный текст
Ответ на Re: Review:Patch: SSL: prefer server cipher order  (Adrian Klaver <adrian.klaver@gmail.com>)
Ответы Re: Review:Patch: SSL: prefer server cipher order  (Adrian Klaver <adrian.klaver@gmail.com>)
Список pgsql-hackers
Дерево обсуждения 
Thanks for testing!

On Sat, Nov 16, 2013 at 12:17:40PM -0800, Adrian Klaver wrote:
> On 11/16/2013 06:24 AM, Marko Kreen wrote:
> >ssl-better-default:
> >   SSL should stay working, openssl ciphers -v 'value' should not contain
> >   any weak suites (RC4, SEED, DES-CBC, EXP, NULL) and no non-authenticated
> >   suites (ADH/AECDH).
> 
> Not sure about the above, if it is a GUC I can't find it. If it is
> something else than I will have to plead ignorance.

The patch just changes the default value for 'ssl_ciphers' GUC.

The question is if the value works at all, and is good.

-- 
marko

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Andrew Dunstan
Дата:
Сообщение: Re: pre-commit triggers
Следующее
От: Peter Eisentraut
Дата:
Сообщение: Re: Wait free LW_SHARED acquisition - v0.2