Hi, On Wed, Dec 3, 2008 at 3:38 PM, Fujii Masao <[EMAIL PROTECTED]> wrote: >>> > Do we need to worry about periodic >>> > renegotiation of keys in be-secure.c? >>> >>> What is "keys" you mean? >> >> See the notes in that file for explanation. > > Thanks! I would check it.
The key is used only when we use SSL for the connection of replication. As far as I examined, secure_write() renegotiates the key if needed. Since walsender calls secure_write() when sending the WAL to the standby, the key is renegotiated periodically. So, I think that we don't need to worry about the obsolescence of the key. Am I missing something? Regards, -- Fujii Masao NIPPON TELEGRAPH AND TELEPHONE CORPORATION NTT Open Source Software Center -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
