Robert Haas <robertmhaas(at)gmail(dot)com> writes:
> Should we think about adding a GUC to disable renegotiation until this
> blows over?
Bad idea: once set, it'll never get unset, thus leaving installations
with a weakened security posture even after they've installed fixed
versions of openssl.
regards, tom lane
In response to
pgsql-hackers by date
|Next:||From: Robert Haas||Date: 2010-02-03 15:28:48|
|Subject: Re: Recent vendor SSL renegotiation patches break PostgreSQL|
|Previous:||From: Robert Haas||Date: 2010-02-03 15:20:52|
|Subject: Re: Largeobject Access Controls (r2460)|