EPISODE · Jun 4, 2026 · 1 MIN
Why Database Connection Encryption Matters More Than You Think
from Database Tech with Fexingo: SQL, NoSQL, and Data Storage Conversations · host Fexingo
Lucas and Luna dig into a topic that most developers treat as a checkbox: connection encryption between applications and databases. Using the example of a mid-size fintech that discovered unencrypted PostgreSQL traffic on its internal network, they explain why TLS between app and database is not just a compliance requirement but a real security boundary. They cover the difference between encryption at rest and in transit, how certificate validation often gets turned off in development and accidentally shipped to production, and why even cloud-hosted databases like Amazon RDS or Azure SQL default to allowing unencrypted connections. The episode includes a concrete walkthrough of how to force SSL in PostgreSQL connection strings and why connection poolers like PgBouncer need their own TLS configuration. Listeners will learn one specific configuration change they can check today to avoid a data leak that no amount of application-level security can fix. #DatabaseEncryption #TLS #PostgreSQL #ConnectionSecurity #DataInTransit #CloudDatabases #AmazonRDS #AzureSQL #PgBouncer #SSL #CyberSecurity #DataBreach #DevOps #BackendEngineering #TechPodcast #FexingoBusiness #BusinessPodcast #DatabaseTech Keep every episode free: buymeacoffee.com/fexingo
What this episode covers
Lucas and Luna dig into a topic that most developers treat as a checkbox: connection encryption between applications and databases. Using the example of a mid-size fintech that discovered unencrypted PostgreSQL traffic on its internal network, they explain why TLS between app and database is not just a compliance requirement but a real security boundary. They cover the difference between encryption at rest and in transit, how certificate validation often gets turned off in development and accidentally shipped to production, and why even cloud-hosted databases like Amazon RDS or Azure SQL default to allowing unencrypted connections. The episode includes a concrete walkthrough of how to force SSL in PostgreSQL connection strings and why connection poolers like PgBouncer need their own TLS configuration. Listeners will learn one specific configuration change they can check today to avoid a data leak that no amount of application-level security can fix. #DatabaseEncryption #TLS #PostgreSQL #ConnectionSecurity #DataInTransit #CloudDatabases #AmazonRDS #AzureSQL #PgBouncer #SSL #CyberSecurity #DataBreach #DevOps #BackendEngineering #TechPodcast #FexingoBusiness #BusinessPodcast #DatabaseTech Keep every episode free: buymeacoffee.com/fexingo
NOW PLAYING
Why Database Connection Encryption Matters More Than You Think
No transcript for this episode yet
Similar Episodes
Mar 26, 2026 ·1m
Mar 19, 2026 ·34m
Feb 18, 2026 ·11m
Feb 11, 2026 ·45m