Re: [GENERAL] OpeSSL - PostgreSQL
John R Pierce writes: > On 11/9/2017 1:59 PM, chiru r wrote: >> How to configure the PostgreSQL to allow specif cipher suites from >> different client applications? > see https://www.postgresql.org/docs/9.5/static/ssl-tcp.html Note that while you can adjust ssl_ciphers, it's a postmaster-wide setting; there is not a provision for letting it be set per-user. Since the SSL handshake necessarily occurs before we find out which user is trying to connect, it'd be hard to do differently. regards, tom lane -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
Re: [GENERAL] OpeSSL - PostgreSQL
On 11/9/2017 1:59 PM, chiru r wrote: How to configure the PostgreSQL to allow specif cipher suites from different client applications? see https://www.postgresql.org/docs/9.5/static/ssl-tcp.html -- john r pierce, recycling bits in santa cruz -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
[GENERAL] OpeSSL - PostgreSQL
Hi All, I am using PostgreSQL version *9.5.7* on Red hat enterprise Linux *7.2.* *OpenSSL version : * OpenSSL 1.0.1e-fips 11 Feb 2013. I have a requirement to enable the SSL in my environment with specific cipher suites,we want to restrict weak cipher suites from open SSL default list. We have list of cipher suites, which are authorized to use in my environment.So the Client Applications use one of authorized cipher suites while configuring application server. Is it require to install different version of OpenSSL software instead of default OpenSSL on Linux ?. How to configure the PostgreSQL to allow specif cipher suites from different client applications? Thanks, Chiru