Skip site navigation (1) Skip section navigation (2)

Re: Recent vendor SSL renegotiation patches break PostgreSQL

From: Robert Haas <robertmhaas(at)gmail(dot)com>
To: Chris Campbell <chris_campbell(at)mac(dot)com>
Cc: pgsql-hackers(at)postgresql(dot)org
Subject: Re: Recent vendor SSL renegotiation patches break PostgreSQL
Date: 2010-02-03 15:03:45
Message-ID: 603c8f071002030703v3fea0d12tf06197fcd0da9f74@mail.gmail.com (view raw or flat)
Thread:
Lists: pgsql-hackers
On Wed, Feb 3, 2010 at 6:24 AM, Chris Campbell <chris_campbell(at)mac(dot)com> wrote:
> The flurry of patches that vendors have recently been making to OpenSSL to address
> the potential man-in-the-middle attack during SSL renegotiation have disabled SSL
> renegotiation altogether in the OpenSSL libraries. Applications that make use of SSL
> renegotiation, such as PostgreSQL, start failing.

Should we think about adding a GUC to disable renegotiation until this
blows over?

...Robert

In response to

Responses

pgsql-hackers by date

Next:From: Stefan KaltenbrunnerDate: 2010-02-03 15:16:29
Subject: Re: Recent vendor SSL renegotiation patches break PostgreSQL
Previous:From: Bruce MomjianDate: 2010-02-03 14:59:10
Subject: Partial Page Writes documentaiton mention

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group