| From: | johnf <jfabiani(at)yolo(dot)com> |
|---|---|
| To: | pgsql-novice(at)postgresql(dot)org |
| Subject: | Re: remote user |
| Date: | 2007-12-12 22:13:20 |
| Message-ID: | 200712121413.20600.jfabiani@yolo.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-novice |
On Wednesday 12 December 2007 02:00:30 pm Tom Lane wrote:
> johnf <jfabiani(at)yolo(dot)com> writes:
> > On Wednesday 12 December 2007 09:52:48 am Tom Lane wrote:
> >> Limit the range of IPs as much as you can, and require the connection to
> >> use SSL, and maybe insist on a client certificate.
> >
> > What do you mean by a cleint certificate? I'll assume it is some sort of
> > key that is passed to my server. But would postgres use the key? Or is
> > this just a way to insure user is who he say he is?
>
> I'm no expert on SSL usage, but there's some basic info here:
> http://www.postgresql.org/docs/8.2/static/ssl-tcp.html
> For the full story on SSL you'd want to visit
> http://www.openssl.org/
>
> regards, tom lane
Thanks for the link I'll need to read up on SSL. This looks like it might
work.
--
John Fabiani
| From | Date | Subject | |
|---|---|---|---|
| Next Message | A. Kretschmer | 2007-12-13 06:04:54 | Re: remote user |
| Previous Message | Tom Lane | 2007-12-12 22:00:30 | Re: remote user |