Quick Links

Re: Feature Proposal: Add ssltermination parameter for SNI-based LoadBalancing

From:	Lukas Meisegeier <MeisegeierLukas(at)gmx(dot)de>
To:	Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Feature Proposal: Add ssltermination parameter for SNI-based LoadBalancing
Date:	2020-12-22 09:19:48
Message-ID:	1e889f7e-08f0-0903-123e-4bd8f2bd33b5@gmx.de
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Hey,

whats the state of this? Can we start working out a plan to remove the
inital SSLRequest from the connection protocol or is there any reason to
keep it?

I would start by removing the need of the SSLRequest in the psql-server
if its started with a special parameter(ssl-only or so).
Simultaneously I would add a parameter to this disable the SSLRequest in
the client as well.

Later we could make this behaviour default for psql-server with
ssl-enabled and clients and some far time ahead we could remove the
implementation of SSLRequest in both server and client.

What are your thaughts about this?

Best Regards

In response to

Re: Feature Proposal: Add ssltermination parameter for SNI-based LoadBalancing at 2020-12-11 15:44:29 from Heikki Linnakangas

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Ajin Cherian	2020-12-22 09:21:43	Re: [HACKERS] logical decoding of two-phase transactions
Previous Message	Li Japin	2020-12-22 09:07:21	Confused about stream replication protocol documentation