Home > mailing lists

Re: SSL over Unix-domain sockets - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: SSL over Unix-domain sockets
Date	March 27, 2009 08:40:25
Msg-id	49CCBB18.5010103@gmx.net Whole thread Raw
In response to	Re: SSL over Unix-domain sockets (Bruce Momjian <bruce@momjian.us>)
Responses	Re: SSL over Unix-domain sockets
List	pgsql-hackers

Tree view

Bruce Momjian wrote:
> Peter Eisentraut wrote:
>> Bruce Momjian wrote:
>>> I thought the logical solution to this was to place the socket in a
>>> secure directory and not bother with SSL at all.
>> How would a client algorithmically determine whether the server socket 
>> was in a "secure" directory?
> 
> You have to configure your client to know that, but don't you need to
> configure your client for SSL too?

Yes, but how exactly would a client know?  How is a "secure directory" 
defined, in terms of C library calls, say?

pgsql-hackers by date:

From: Guillaume Smet
Date: 27 March 2009, 08:26:35
Subject: Re: 8.4 open items list

From: Peter Eisentraut
Date: 27 March 2009, 08:46:44
Subject: Re: SSL over Unix-domain sockets

Re: SSL over Unix-domain sockets - Mailing list pgsql-hackers

Previous

Next