Skip site navigation (1) Skip section navigation (2)

Re: TODO: GNU TLS

From: Chris Browne <cbbrowne(at)acm(dot)org>
To: pgsql-hackers(at)postgresql(dot)org
Subject: Re: TODO: GNU TLS
Date: 2007-01-01 22:07:47
Message-ID: 60d55yz9ho.fsf@dba2.int.libertyrms.com (view raw or flat)
Thread:
Lists: pgsql-hackers
jd(at)commandprompt(dot)com ("Joshua D. Drake") writes:
>> The reason I wanted to use PGP is that I already have a PGP key. X.509
>> certificates are far too complicated (a certificate authority is a
>> useless extra step in my case).
>
> Complete side note but one feature that I brought up to my team a
> potentially useful would be to allow the use of ssh keys for
> authentication.
>
> SSH keys are far more prevalent, and they are understood even at the
> medium corporate level.

I haven't discussed this with Afilias folk, but that sure sounds like
an excellent thing to me.  ssh keys are already in widespread use for
other forms of authentication; this seems an excellent re-use.

X.509 might be nice, too, eventually; ssh keys would be immediately
useful.
-- 
"cbbrowne","@","linuxfinances.info"
http://cbbrowne.com/info/sap.html
Evil Overlords tend to get overthrown due to overly baroque plans with
obvious fatal  errors.  Follow the  "Rules of the Evil  Overlord," and
you need not fear heroic  opposition, whether that hero be James Bond,
Flash Gordon, or a little hobbit named Frodo.

In response to

pgsql-hackers by date

Next:From: Tom LaneDate: 2007-01-01 22:53:35
Subject: Reverse-sort indexes and NULLS FIRST/LAST sorting
Previous:From: Jim C. NasbyDate: 2007-01-01 21:54:21
Subject: Status of Fix Domain Casting TODO

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group