| From: | Peter Eisentraut <peter(dot)eisentraut(at)enterprisedb(dot)com> |
|---|---|
| To: | Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, Robert Haas <robertmhaas(at)gmail(dot)com>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Jacob Champion <pchampion(at)vmware(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Post-CVE Wishlist |
| Date: | 2021-11-24 07:48:27 |
| Message-ID: | c05e7466-d094-2ec1-334f-5dcd024d4fc1@enterprisedb.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 23.11.21 23:41, Heikki Linnakangas wrote:
> On 23/11/2021 23:44, Robert Haas wrote:
>> On Tue, Nov 23, 2021 at 2:18 PM Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
>>> Jacob Champion <pchampion(at)vmware(dot)com> writes:
>>>> = Implicit TLS =
>
> Aside from security, one small benefit of skipping the Starttls-style
> negotiation is that you avoid one round-trip to the server.
Also, you could make use of existing TLS-aware proxy infrastructure
without having to hack in PostgreSQL protocol support. There is
definitely demand for that.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | kuroda.hayato@fujitsu.com | 2021-11-24 07:50:02 | RE: [Proposal] Add foreign-server health checks infrastructure |
| Previous Message | Peter Eisentraut | 2021-11-24 07:40:56 | Re: Mop-up from Test::More version change patch |