| From: | Michael Fuhr <mike(at)fuhr(dot)org> |
|---|---|
| To: | Ray Stell <stellr(at)cns(dot)vt(dot)edu> |
| Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: no verification of client certificate? |
| Date: | 2007-03-26 13:42:53 |
| Message-ID: | 20070326134253.GA8871@winnie.fuhr.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin pgsql-docs |
On Mon, Mar 26, 2007 at 09:03:53AM -0400, Ray Stell wrote:
> If you don't mind, how do you use ssldump to trace a psql setup?
I usually capture the connection to a file with tcpdump and then
use ssldump to read the file. Sometimes I use wireshark (formerly
ethereal) but it's a bit heavyweight for most of my needs. As for
how to interpret what ssldump shows, I'd recommend reading Eric
Rescorla's _SSL and TLS_. Rescorla wrote ssldump and used it for
many of the book's diagrams; he's also the author or co-author of
several of the relevant RFCs (e.g., RFC 4346 The Transport Layer
Security (TLS) Protocol Version 1.1).
--
Michael Fuhr
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Daniel Ricardo Medina | 2007-03-26 13:52:08 | Re: URGENT TABLE PG_SHADOW CORRUTEP |
| Previous Message | Ray Stell | 2007-03-26 13:35:33 | Re: no verification of client certificate? |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Michael Fuhr | 2007-03-26 14:00:04 | Re: no verification of client certificate? |
| Previous Message | Ray Stell | 2007-03-26 13:35:33 | Re: no verification of client certificate? |