| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> |
| Cc: | pgsql-hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: ssl_library parameter |
| Date: | 2018-06-26 15:48:40 |
| Message-ID: | 22564.1530028120@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> writes:
> Extracted from the GnuTLS thread/patch, here is a patch to add a
> server-side read-only parameter ssl_library, which currently reports
> either 'OpenSSL' or an empty string, depending on what SSL library was
> built with. This is analogous to the libpq function call
> PQsslAttribute(conn, "library"), but there was no equivalent
> functionality on the server side.
(1) I'm not really clear why we need this. GUC variables aren't free.
(2) Are there security issues with exposing this info to everybody?
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David G. Johnston | 2018-06-26 15:48:43 | Unexpected behavior of DROP VIEW/TABLE IF EXISTS |
| Previous Message | Peter Moser | 2018-06-26 15:46:50 | Re: Unexpected behavior of DROP VIEW/TABLE IF EXISTS |