| From: | Magnus Hagander <magnus(at)hagander(dot)net> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Peter Eisentraut <peter_e(at)gmx(dot)net>, pgsql-bugs(at)postgresql(dot)org, Dan Kaminsky <dan(at)doxpara(dot)com>, Gregory Stark <stark(at)enterprisedb(dot)com>, Alvaro Herrera <alvherre(at)commandprompt(dot)com>, Bruce Momjian <bruce(at)momjian(dot)us> |
| Subject: | Re: BUG #4340: SECURITY: Is SSL Doing Anything? |
| Date: | 2008-08-20 13:30:48 |
| Message-ID: | 48AC1C88.1090905@hagander.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
Tom Lane wrote:
> Magnus Hagander <magnus(at)hagander(dot)net> writes:
>> The code is there, actually, it's just #ifdef NOT_USED :-) From a *long*
>> time ago, and the commit message just says "silence compiler warnings",
>> so I've not managed to figure out why...
>
> I think the commit you're looking for is this one:
>
> 2002-09-26 00:41 momjian
>
> * doc/src/sgml/runtime.sgml, src/backend/libpq/be-secure.c,
> src/interfaces/libpq/fe-secure.c: Allow SSL to work withouth
> client-side certificate infrastructure.
>
> so you'd probably need to root around in the archives from around then
> to see why this was considered a good idea.
No, that's not the one. It's the one after that one, at:
http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/interfaces/libpq/fe-secure.c.diff?r1=1.14;r2=1.15
In general, that code needs a look-over, I think. There may be more
changes required.
//Magnus
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2008-08-20 13:33:14 | Re: BUG #4340: SECURITY: Is SSL Doing Anything? |
| Previous Message | Tom Lane | 2008-08-20 13:15:32 | Re: BUG #4340: SECURITY: Is SSL Doing Anything? |