Home > mailing lists

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Spoofing as the postmaster
Date	December 28, 2007 23:10:36
Msg-id	[email protected] Whole thread Raw
In response to	Re: Spoofing as the postmaster (Bruce Momjian <[email protected]>)
Responses	Re: Spoofing as the postmaster Re: Spoofing as the postmaster Re: Spoofing as the postmaster
List	pgsql-hackers

Tree view

Bruce Momjian <[email protected]> writes:
> Agreed.  Requiring client root certificate checking is heavy-handed.

There seems to be some confusion here.  I didn't think anyone was
proposing that we force every installation to require client root
certificate checking.  What was under discussion (I thought) was
providing the ability for a DBA to *choose* to require it.

> Of course I am not sure anyone knows how to get that information from
> SSL.

Yeah, if OpenSSL doesn't support testing for this then the discussion
is moot...
        regards, tom lane

pgsql-hackers by date:

From: Bruce Momjian
Date: 28 December 2007, 22:35:48
Subject: Re: Spoofing as the postmaster

From: Bruce Momjian
Date: 28 December 2007, 23:23:22
Subject: Re: Spoofing as the postmaster

Re: Spoofing as the postmaster - Mailing list pgsql-hackers

Previous

Next