On Wed, Feb 3, 2010 at 6:24 AM, Chris Campbell wrote:
The flurry of patches that vendors have recently been making to OpenSSL to address
the potential man-in-the-middle attack during SSL renegotiation have disabled SSL
renegotiation altogether in the OpenSSL libraries. Applications that make use of SSL
renegotiation, such as PostgreSQL, start failing.
Should we think about adding a GUC to disable renegotiation until this
blows over?

...Robert

Search Discussions

Discussion Posts

Previous

Follow ups

Related Discussions

People

Translate

site design / logo © 2022 Grokbase