diff options
| author | Magnus Hagander <magnus@hagander.net> | 2010-02-25 13:26:19 +0000 |
|---|---|---|
| committer | Magnus Hagander <magnus@hagander.net> | 2010-02-25 13:26:19 +0000 |
| commit | f8bd81b4cb6970c784e5c8250861df1e09cf323e (patch) | |
| tree | 3b24d5ac325d5078ab56a0deedcaac5719f5b9d3 /src/backend/utils/misc/postgresql.conf.sample | |
| parent | 2c0914be737f81c2d0c020bf44fb66d92281c3a6 (diff) | |
| download | postgresql-f8bd81b4cb6970c784e5c8250861df1e09cf323e.tar.gz postgresql-f8bd81b4cb6970c784e5c8250861df1e09cf323e.zip | |
Add configuration parameter ssl_renegotiation_limit to control
how often we do SSL session key renegotiation. Can be set to
0 to disable renegotiation completely, which is required if
a broken SSL library is used (broken patches to CVE-2009-3555
a known cause) or when using a client library that can't do
renegotiation.
Diffstat (limited to 'src/backend/utils/misc/postgresql.conf.sample')
| -rw-r--r-- | src/backend/utils/misc/postgresql.conf.sample | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/backend/utils/misc/postgresql.conf.sample b/src/backend/utils/misc/postgresql.conf.sample index c1046fa86ea..115b3765ffd 100644 --- a/src/backend/utils/misc/postgresql.conf.sample +++ b/src/backend/utils/misc/postgresql.conf.sample @@ -74,6 +74,7 @@ #authentication_timeout = 1min # 1s-600s #ssl = off # (change requires restart) +#ssl_renegotiation_limit = 512MB # amount of data between renegotiations #password_encryption = on #db_user_namespace = off |