| From: | Holger Jakobs <holger(at)jakobs(dot)com> |
|---|---|
| To: | pgsql-admin(at)lists(dot)postgresql(dot)org |
| Subject: | Re: Reg: TLS Implementation |
| Date: | 2022-11-24 15:03:26 |
| Message-ID: | aca02bc2-e2a0-ba82-737a-865c8b9a9d5d@jakobs.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Am 24.11.22 um 15:59 schrieb Jagjit Singh OCP:
> Yes, I want to encrypt communications between client and server.
>
> Sent from my iPhone
>
>> On Nov 24, 2022, at 4:52 AM, Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at> wrote:
>>
>> On Wed, 2022-11-23 at 17:15 -0500, jagjit singh wrote:
>>> I am working to implement TLS over the Postgresql 14 database.
>> What exactly do you mean by that?
>> Are you talking about encryprig the communication between
>> client and server?
>>
>> Yours,
>> Laurenz Albe
Then there is nothing to be implemented.
Just turn on ssl encryption in the configuration file while supplying
the certificate and key files.
Have a look at the configuration file, search for ssl.
On Debian systems and derivatives, everything is alread set up, but with
snakeoil certificates. They work fine for the encryption but don't
identify the server securely.
Ask your PKI department for the certificate and key files, if necessary.
Red Hat doesn't supply any.
TLS is only the new name for SSL versions > 3.0, but PostgreSQL sticks
to the old name.
--
Holger Jakobs, Bergisch Gladbach, Tel. +49-178-9759012
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dhirendra Singh | 2022-11-25 05:21:17 | Difference between host, hostssl and hostnossl connection type |
| Previous Message | Jagjit Singh OCP | 2022-11-24 14:59:03 | Re: Reg: TLS Implementation |