Re: [PATCH v20] GSSAPI encryption support
Robert Haas <robertmhaas@gmail.com>
From: Robert Haas <robertmhaas@gmail.com>
To: Stephen Frost <sfrost@snowman.net>
Cc: Robbie Harwood <rharwood@redhat.com>, Bruce Momjian <bruce@momjian.us>, Magnus Hagander <magnus@hagander.net>, Joe Conway <mail@joeconway.com>, Peter Eisentraut <peter.eisentraut@2ndquadrant.com>, Alvaro Herrera <alvherre@2ndquadrant.com>,
David Steele <david@pgmasters.net>, Michael Paquier <michael@paquier.xyz>, Nico Williams <nico@cryptonector.com>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2019-04-11T13:56:37Z
Lists: pgsql-hackers
On Wed, Apr 10, 2019 at 9:47 PM Stephen Frost <sfrost@snowman.net> wrote: > Right, if we changed the name of the auth method then everyone who is > using the "gss" auth method would have to update their pg_hba.conf > files... That would be very ugly. Also, it wasn't implicitly rejected, > it was discussed up-thread (see the comments between Magnus and I, > specifically, quoted above- "that ship sailed *years* ago") and > explicitly rejected. Slightly off-topic, but I am not familiar with GSSAPI and don't quite understand what the benefits of GSSAPI encryption are as compared with OpenSSL encryption. I am sure there must be some; otherwise, nobody would have bothered writing, reviewing, and committing this patch. Can somebody enlighten me? -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company
Commits
-
GSSAPI encryption support
- b0b39f72b990 12.0 landed
-
Fix typo
- 57c932475504 9.6.0 cited