Server: pg 8.0.4 on Red Hat Enterprise Linux 4.
Client: psql 8.0.4 on WinXP Pro SP2.
I have a (self-signed) root.crt on the server, and a
%APPDATA%\postgresql\postgresql.crt signed by that root.crt on the client.
I am surprised that it does not seem to matter to whom the postgresql.crt
What I experience is not really contradictory to the docs: "... a client
certificate will be requested from the client during SSL connection
startup, and it must have been signed by one of the certificates present
in root.crt". The docs do not mention that the client crt has to be issued
to the user trying to log on. Isn't it a point TO WHOM the client crt is
issued? Is this the way it is meant to be?
pgsql-interfaces by date
|Next:||From: Tom Lane||Date: 2005-12-19 06:08:08|
|Subject: Re: To whom an SSL client crt (postgresql.crt) is issued |
|Previous:||From: Jim C. Nasby||Date: 2005-12-15 23:09:54|
|Subject: Re: Obtaining information on the schema of tables which|