From: | Abhijit Menon-Sen <ams(at)toroid(dot)org> |
---|---|
To: | "Michael J(dot) Baars" <mjbaars1977(dot)pgsql(dot)hackers(at)gmail(dot)com> |
Cc: | pgsql-hackers(at)lists(dot)postgresql(dot)org |
Subject: | Re: SSL compression |
Date: | 2021-11-08 08:00:21 |
Message-ID: | YYjZFYSFDJ27BHGR@toroid.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
At 2021-11-08 08:41:42 +0100, mjbaars1977(dot)pgsql(dot)hackers(at)gmail(dot)com wrote:
>
> Could someone please explain to me, why compression is being
> considered unsafe / insecure?
https://en.wikipedia.org/wiki/CRIME
> Might the underlying reason be, that certain people have shown
> interest in my libpq/PQblockwrite algorithms (
> https://www.postgresql.org/message-id/c7cccd0777f39c53b9514e3824badf276759fa87.camel%40cyberfiber.eu)
> but felt turned down and are now persuading me to trade the algorithms
> against SSL compression, than just say so please. I'll see what I can
> do.
The whole world is trying to move away from TLS compression (which has
been removed from TLS 1.3). It has nothing to do with you.
-- Abhijit
From | Date | Subject | |
---|---|---|---|
Next Message | Kyotaro Horiguchi | 2021-11-08 08:55:16 | Re: standby recovery fails (tablespace related) (tentative patch and discussion) |
Previous Message | Michael J. Baars | 2021-11-08 07:41:42 | SSL compression |