Martin Pitt <mpitt(at)debian(dot)org> writes:
> At least the certificate could be permitted to be owned/in group root.
> I cannot see how this should weaken the certificate's security.
Postgres doesn't run as root, hence could not use such a certificate
unless it was world-readable.
Or should I infer from this that you've also patched out that safety
regards, tom lane
In response to
pgsql-bugs by date
|Next:||From: Martin Pitt||Date: 2005-10-16 09:45:20|
|Subject: Re: BUG #1963: SSL certificate permission check is too strict|
|Previous:||From: Tom Lane||Date: 2005-10-15 00:32:37|
|Subject: A couple of ecpg issues in CVS tip|