On Fri, Jun 26, 2015 at 9:59 AM, Andres Freund <and...@anarazel.de> wrote: > Generally I'd agree that that is a bad thing. But there's really not > much of a observable behaviour change in this case? Except that > connections using ssl break less often.
Well, SSL renegotiation exists for a reason: to improve security. It's not awesome that we're being forced to shut off features that are designed to improve security. But it seems we have little choice, at least until we can support some other SSL implementation (and maybe not even then). -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
