Re: ssl and/or md5 encryption

From: Michael Fuhr <mike(at)fuhr(dot)org>
To: Colton A Smith <smith(at)cs(dot)utk(dot)edu>
Cc: pgsql-admin(at)postgresql(dot)org
Subject: Re: ssl and/or md5 encryption
Date: 2005-12-06 06:46:19
Message-ID: 20051206064619.GA70020@winnie.fuhr.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-admin

On Wed, Nov 30, 2005 at 08:24:34AM -0500, Colton A Smith wrote:
> I specify md5 encryption in my pg_hba.conf file. Would using SSL on
> top of this be overkill?

Specifying md5 in pg_hba.conf affects only password authentication;
everything else will be sent in cleartext.

What's your threat model? What do you want to secure? Just
authentication, or data transfer as well?

--
Michael Fuhr

In response to

Browse pgsql-admin by date

  From Date Subject
Next Message Karthik.S 2005-12-06 12:33:50 error while creating database
Previous Message Nirav Parikh 2005-12-06 01:50:22