Re: Backend SSL configuration enhancement

"Victor B. Wagner" <vitus@cryptocom.ru> writes:
> This patch adds two new configuration diretives to postgresql.conf file
> 1. ssl_ciphers  - allows server administrator to  specify set of SSL
> ciphersuites which can be used by clients to connect  the server.
> 2. ssl_engine - allows  to specify loadable crypto engin (i.e. hardware
> crypto accelerator support) to use.

Why are either of these useful?  What are the compatibility implications
of changing them?  Does the addition of the engine-load code break
compatibility with older OpenSSL releases?

            regards, tom lane