| From: | Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> |
|---|---|
| To: | Michael Paquier <michael(at)paquier(dot)xyz> |
| Cc: | Magnus Hagander <magnus(at)hagander(dot)net>, Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, Postgres hackers <pgsql-hackers(at)postgresql(dot)org>, Robert Haas <robertmhaas(at)gmail(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, Bruce Momjian <bruce(at)momjian(dot)us> |
| Subject: | Re: SCRAM with channel binding downgrade attack |
| Date: | 2018-06-29 20:42:36 |
| Message-ID: | 41559c12-4656-14ec-2b64-0d1b9c1b43cb@2ndquadrant.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-www |
On 29.06.18 04:16, Michael Paquier wrote:
> I am able to find easily drafts of TLS 1.3, but I am not seeing an RFC
> associated to it, which would be the base document to rely on I
> guess... So that's really hard to make any decision in this area
> without the real deal. As far as I can see tls-unique could be
> deprecated and replaced, but from OpenSSL point of view it technically
> works.
At this point, I think we can leave it as is until they came out with a
new channel binding type.
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2018-06-29 20:47:00 | TLS 1.3 and OpenSSL |
| Previous Message | Euler Taveira | 2018-06-29 20:34:21 | Re: Comment refers to non existent function IncreaseRestartDecodingForSlot |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2018-06-29 20:47:00 | TLS 1.3 and OpenSSL |
| Previous Message | Michael Paquier | 2018-06-29 02:16:01 | Re: SCRAM with channel binding downgrade attack |