Hi -
tgl wrote:
: > Oh, I see finally. You already put a custom little
: > challenge/response authentication scheme into postgresql,
: [...]
: Long before any of the current generation of developers, AFAIK.
Okay. (Sorry about misinferring "You" above!)
: In any case, as several people have pointed out, one may well want to
: guard one's password more carefully than one guards the entire session
: contents. Running SSL on a session that may transfer many megabytes
: is a lot of overhead.
Sure, but that's a separate performance question that shouldn't affect
the logical layering of the mechanisms. With SSL, for example, methinks
it's possible to renegotiate a connection to turn off encryption after
a certain point.
- FChE