Re: Successor of MD5 authentication, let's use SCRAM

Поиск
Список
Период
Сортировка
От Daniel Farina
Тема Re: Successor of MD5 authentication, let's use SCRAM
Дата
Msg-id CAAZKuFaTJDdQqecB=ZuRNp9+6eGNKRZuJoCkNoM__LV9CFb2RQ@mail.gmail.com
обсуждение исходный текст
Ответ на Re: Successor of MD5 authentication, let's use SCRAM  (Andrew Dunstan <andrew@dunslane.net>)
Ответы Re: Successor of MD5 authentication, let's use SCRAM
Список pgsql-hackers
Дерево обсуждения 
On Sat, Oct 13, 2012 at 7:00 AM, Andrew Dunstan <andrew@dunslane.net> wrote:
> Does Debian they create a self-signed certificate? If so, count me as
> unimpressed. I'd argue that's worse than doing nothing. Here's what the docs
> say (rightly) about such certificates:

Debian will give you a self signed certificate by default.  Protecting
against passive eavesdroppers is not an inconsiderable benefit to get
for "free", and definitely not a marginal attack technique: it's
probably the most common.

For what they can possibly know about the end user, Debian has it right here.

-- 
fdr

В списке pgsql-hackers по дате отправления:

Предыдущее
От: Andrew Dunstan
Дата:
Сообщение: Re: parallel pg_dump
Следующее
От: Fujii Masao
Дата:
Сообщение: Re: pg_stat_lwlocks view - lwlocks statistics, round 2