On Tue, 17 Dec 2002, Nathan Mueller wrote: > > Well, we break backward compatibility so people can't use SSL2 to > > connect to the server. Backward compatibility to a broken protocol > > isn't what I would call secure. Is that accurate? > > I suppose. As long as the incompatibilty is mentioned in HISTORY I'm > fine.
I read the SSL_CTX_new man page, and they recommend using SSLv23_method to provide backwards compatibility ... if someone doesn't wan tto use SSL2, they have the option to use TLS, but we shouldn't be forcigin them to use one or the othe r... I have made the change and am just building v7.3.1 right now ... should be available in a few minutes, and I'll announce it this evening as being available ... can you grab a copy and make sure that it works as expected? ---------------------------(end of broadcast)--------------------------- TIP 5: Have you checked our extensive FAQ? http://www.postgresql.org/users-lounge/docs/faq.html
