Bruce Momjian wrote:
> OK, updated paragraph:
>
> It is possible to have authentication without encryption overhead by
> using <literal>NULL-SHA</> or <literal>NULL-MD5</> ciphers. However,
> a man-in-the-middle could read and pass communications between client
> and server. Also, encryption overhead is minimal compared to the
> overhead of authentication. For these reasons NULL ciphers are not
> recommended.
>
Looks good!
Cheers,
mark
--
Mark Mielke <mark@mielke.cc>