[Pgpool-general] SSL support
Kashyap Jani
kjani at cognitronics.com
Thu Nov 10 14:38:12 GMT 2005
Hi,
This is actually a postgres feature. While connecting to postgres
database using libpq you can pass your preference of using ssl. One of
the option if prefer which means if will first try to use ssl and if the
server does not support if it will fall back to unsecured connection.
However if you use require as your option the connection will fail if
the database server does not support ssl.
Hope this helps.
Regards,
Kashyap Jani
Tatsuo Ishii wrote:
>>On Wed, Nov 09, 2005 at 11:14:27PM +0900, Tatsuo Ishii wrote:
>>
>>
>>>pgpool does not support SSL (yet). However if SSL request arrives,
>>>pgpool returns error, which in turn applications fall back to non SSL
>>>mode. You mean, pgpool does not work like this?
>>>
>>>
>>Is this automatic behaviour, or is it up to the application
>>developer? I'm at the IETF meeting just now, and had a conversation
>>about the undesirability of automatic unsecued fallback for some
>>applications just today: you really don't want (for example)
>>financial transactions to pass unsecured across a possibly hostile
>>net. (I suspect such an arrangement with pgpool would be a bad use
>>case anyway, but one never knows what people are going to do.)
>>
>>
>
>I think this is what psql behaves. I don't know if this is implemented
>in psql or libpq layer though.
>--
>SRA OSS, Inc. Japan
>Tatsuo Ishii
>_______________________________________________
>Pgpool-general mailing list
>Pgpool-general at pgfoundry.org
>http://pgfoundry.org/mailman/listinfo/pgpool-general
>
>
>
>
>
More information about the Pgpool-general
mailing list