| From: | Robert Haas <robertmhaas(at)gmail(dot)com> |
|---|---|
| To: | Noah Misch <noah(at)leadboat(dot)com> |
| Cc: | Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, Troels Nielsen <bn(dot)troels(at)gmail(dot)com>, Pg Hackers <pgsql-hackers(at)postgresql(dot)org>, Sean Chittenden <sean(at)chittenden(dot)org> |
| Subject: | Re: SSL renegotiation |
| Date: | 2013-07-16 15:57:19 |
| Message-ID: | CA+TgmobqrJ+m7Ke+F+1jbDEsaCLgm0Vm8DDqAw-UfTDtzXve0g@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers pgsql-hackers |
On Fri, Jul 12, 2013 at 8:51 PM, Noah Misch <noah(at)leadboat(dot)com> wrote:
> On Fri, Jul 12, 2013 at 04:32:52PM -0400, Alvaro Herrera wrote:
>> Now, should we support the 0.9.6-and-earlier mechanism? My inclination
>> is no; even RHEL 3, the oldest supported Linux distribution, uses 0.9.7
>> (Heck, even Red Hat Linux 9, released on 2003). To see OpenSSL 0.9.6
>> you need to go back to Red Hat Linux 7.2, released on 2001 using a Linux
>> kernel 2.4. Surely no one in their right mind would use a current
>> Postgres release on such an ancient animal.
>
> Agreed. The OpenSSL Project last applied a security fix to 0.9.6 over eight
> years ago. Compatibility with 0.9.6 has zero or negative value.
+1 from me as well, if any more are needed.
--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2013-07-16 17:02:47 | pgsql: Allow background workers to be started dynamically. |
| Previous Message | Peter Eisentraut | 2013-07-16 00:30:52 | pgsql: Fix PQconninfoParse error message handling |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2013-07-16 16:05:00 | Re: Differences in WHERE clause of SELECT |
| Previous Message | Andres Freund | 2013-07-16 15:56:10 | Re: findDependentObjects() mutual exclusion vs. MVCC catalog scans |