>>> Tom Lane <tgl@sss.pgh.pa.us> wrote:
> BTW, should we make all of this conditional on the use of an SSL
> connection? If the original sending of the cancel key isn't secure
> against sniffing, it's hard to see what anyone is buying with all
the
> added computation.
+1
All of our important production work is done with local connections.
If the machine has been compromised to the level that loopback traffic
is being intercepted, these protections won't help.
-Kevin