Update and clarify ssl_ciphers default
Peter Eisentraut <peter_e@gmx.net>
Update and clarify ssl_ciphers default - Write HIGH:MEDIUM instead of DEFAULT:!LOW:!EXP for clarity. - Order 3DES last to work around inappropriate OpenSSL default. - Remove !MD5 and @STRENGTH, because they are irrelevant. - Add clarifying documentation. Effectively, the new default is almost the same as the old one, but it is arguably easier to understand and modify. Author: Marko Kreen <markokr@gmail.com>
Files
| Path | Change | +/− |
|---|---|---|
| doc/src/sgml/config.sgml | modified | +62 −3 |
| src/backend/utils/misc/guc.c | modified | +1 −1 |
| src/backend/utils/misc/postgresql.conf.sample | modified | +1 −1 |