Stefan Kaltenbrunner <stefan(at)kaltenbrunner(dot)cc> writes:
> Tom Lane wrote:
>> The discussion I saw suggested that you need such a patch at both ends.
> and likely requires a restart of both postgresql and slony afterwards...
Actually, after looking through the available info about this:
I think my comment above is wrong. It is useful to patch the
*server*-side library to reject a renegotiation request. Applying that
patch on the client side, however, is useless and simply breaks things.
regards, tom lane
In response to
pgsql-hackers by date
|Next:||From: Peter Eisentraut||Date: 2009-11-27 22:16:09|
|Subject: Re: unknown libpq service entries ignored|
|Previous:||From: Stefan Kaltenbrunner||Date: 2009-11-27 21:39:44|
|Subject: Re: OpenSSL key renegotiation with patched openssl|