granicus.if.org Git - postgresql/commit

]> granicus.if.org Git - postgresql/commit

author	Bruce Momjian <bruce@momjian.us>
	Fri, 14 Jun 2002 04:31:49 +0000 (04:31 +0000)
committer	Bruce Momjian <bruce@momjian.us>
	Fri, 14 Jun 2002 04:31:49 +0000 (04:31 +0000)
commit	55d053233ca78e9d6c8efc54f0f3f1079cc5e95d
tree	7d97077fca83ffe217a4ac4057684f0ee2eaa521	tree \| snapshot
parent	19570420f5318343ed7a263cc6046fd5605b22cc	commit \| diff

SSL support for ephemeral DH keys.

As the comment headers in be-secure.c discusses, EPH preserves
confidentiality even if the static private key (which is usually
kept unencrypted) is compromised.

Because of the value of this, common default values are hard-coded
to protect the confidentiality of the data even if an attacker
successfully deletes or modifies the external file.

Bear Giles

src/backend/libpq/be-secure.c		diff \| blob \| history
src/interfaces/libpq/fe-secure.c		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom