diff options
-rw-r--r-- | doc/TODO | 8 | ||||
-rw-r--r-- | doc/src/FAQ/TODO.html | 7 |
2 files changed, 11 insertions, 4 deletions
@@ -1,7 +1,7 @@ PostgreSQL TODO List ==================== Current maintainer: Bruce Momjian (bruce@momjian.us) -Last updated: Thu Jul 31 16:47:21 EDT 2008 +Last updated: Mon Aug 11 23:48:39 EDT 2008 The most recent version of this document can be viewed at http://www.postgresql.org/docs/faqs.TODO.html. @@ -82,13 +82,17 @@ Administration http://archives.postgresql.org/pgsql-bugs/2007-12/msg00069.php -* Allow client certificate names to be checked against the client +* Allow SSL client certificate names to be checked against the client hostname This is already implemented in libpq/fe-secure.c::verify_peer_name_matches_certificate() but the code is commented out. +* Add 'hostgss' pg_hba.conf option to allow GSS link-level encryption + + http://archives.postgresql.org/pgsql-hackers/2008-07/msg01454.php + * Improve server security options http://archives.postgresql.org/pgsql-hackers/2008-04/msg01875.php diff --git a/doc/src/FAQ/TODO.html b/doc/src/FAQ/TODO.html index 008a5e69499..5d0f4a50a3b 100644 --- a/doc/src/FAQ/TODO.html +++ b/doc/src/FAQ/TODO.html @@ -8,7 +8,7 @@ <body bgcolor="#FFFFFF" text="#000000" link="#FF0000" vlink="#A00000" alink="#0000FF"> <h1><a name="section_1">PostgreSQL TODO List</a></h1> <p>Current maintainer: Bruce Momjian (<a href="mailto:bruce@momjian.us">bruce@momjian.us</a>)<br/> -Last updated: Thu Jul 31 16:47:21 EDT 2008 +Last updated: Mon Aug 11 23:48:39 EDT 2008 </p> <p>The most recent version of this document can be viewed at<br/> <a href="http://www.postgresql.org/docs/faqs.TODO.html">http://www.postgresql.org/docs/faqs.TODO.html</a>. @@ -79,12 +79,15 @@ first. There is also a developer's wiki at<br/> sharing SSL keys with other applications <p> <a href="http://archives.postgresql.org/pgsql-bugs/2007-12/msg00069.php">http://archives.postgresql.org/pgsql-bugs/2007-12/msg00069.php</a> </p> - </li><li>Allow client certificate names to be checked against the client + </li><li>Allow SSL client certificate names to be checked against the client hostname <p> This is already implemented in libpq/fe-secure.c::verify_peer_name_matches_certificate() but the code is commented out. </p> + </li><li>Add 'hostgss' pg_hba.conf option to allow GSS link-level encryption +<p> <a href="http://archives.postgresql.org/pgsql-hackers/2008-07/msg01454.php">http://archives.postgresql.org/pgsql-hackers/2008-07/msg01454.php</a> +</p> </li><li>Improve server security options <p> <a href="http://archives.postgresql.org/pgsql-hackers/2008-04/msg01875.php">http://archives.postgresql.org/pgsql-hackers/2008-04/msg01875.php</a> <a href="http://archives.postgresql.org/pgsql-hackers/2008-05/msg00000.php">http://archives.postgresql.org/pgsql-hackers/2008-05/msg00000.php</a> |