database/postgres
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-11-26 23:43:30 +03:00
Code Activity
Files
1a2fdc99a4b341feb6c01304e58f01dd0e095d9a
postgres/src/backend/libpq
History
Peter Eisentraut 1a2fdc99a4 Define LDAP_NO_ATTRS if necessary. 
Commit 83aaac41c6 introduced the use of
LDAP_NO_ATTRS to avoid requesting a dummy attribute when doing search+bind
LDAP authentication.  It turns out that not all LDAP implementations define
that macro, but its value is fixed by the protocol so we can define it
ourselves if it's missing.

Author: Thomas Munro
Reported-By: Ashutosh Sharma
Discussion: https://postgr.es/m/CAE9k0Pm6FKCfPCiAr26-L_SMGOA7dT_k0%2B3pEbB8%2B-oT39xRpw%40mail.gmail.com
2017-09-13 08:22:42 -04:00
..
auth-scram.c
Tweak some SCRAM error messages and code comments
2017-08-23 12:29:38 -04:00
auth.c
Define LDAP_NO_ATTRS if necessary.
2017-09-13 08:22:42 -04:00
be-fsstubs.c
Require update permission for the large object written by lo_put().
2017-08-07 10:19:19 -04:00
be-secure-openssl.c
Final pgindent + perltidy run for v10.
2017-08-14 17:29:33 -04:00
be-secure.c
Always use 2048 bit DH parameters for OpenSSL ephemeral DH ciphers.
2017-07-31 22:36:09 +03:00
crypt.c
Don't allow logging in with empty password.
2017-08-07 17:03:42 +03:00
hba.c
Allow custom search filters to be configured for LDAP auth
2017-09-12 09:49:04 -04:00
ifaddr.c
Phase 2 of pgindent updates.
2017-06-21 15:19:25 -04:00
Makefile
Support SCRAM-SHA-256 authentication (RFC 5802 and 7677).
2017-03-07 14:25:40 +02:00
pg_hba.conf.sample
Rename "scram" to "scram-sha-256" in pg_hba.conf and password_encryption.
2017-04-18 14:50:50 +03:00
pg_ident.conf.sample
Reformat the comments in pg_hba.conf and pg_ident.conf
2010-01-26 06:58:39 +00:00
pqcomm.c
Second try at fixing tcp_keepalives_idle option on Solaris.
2017-06-28 12:30:16 -04:00
pqformat.c
Update copyright via script for 2017
2017-01-03 13:48:53 -05:00
pqmq.c
Clean up shm_mq cleanup.
2017-08-31 15:10:24 -04:00
pqsignal.c
Update copyright via script for 2017
2017-01-03 13:48:53 -05:00
README.SSL
Remove useless whitespace at end of lines
2010-11-23 22:34:55 +02:00

README.SSL 

src/backend/libpq/README.SSL

SSL
===

>From the servers perspective:


  Receives StartupPacket
           |
           |
 (Is SSL_NEGOTIATE_CODE?) -----------  Normal startup
           |                  No
           |
           | Yes
           |
           |
 (Server compiled with USE_SSL?) ------- Send 'N'
           |                       No        |
           |                                 |
           | Yes                         Normal startup
           |
           |
        Send 'S'
           |
           |
      Establish SSL
           |
           |
      Normal startup





>From the clients perspective (v6.6 client _with_ SSL):


      Connect
         |
         |
  Send packet with SSL_NEGOTIATE_CODE
         |
         |
  Receive single char  ------- 'S' -------- Establish SSL
         |                                       |
         | '<else>'                              |
         |                                  Normal startup
         |
         |
   Is it 'E' for error  ------------------- Retry connection
         |                  Yes             without SSL
         | No
         |
   Is it 'N' for normal ------------------- Normal startup
         |                  Yes
         |
   Fail with unknown

---------------------------------------------------------------------------
View Git Blame Copy Permalink