Skip site navigation (1) Skip section navigation (2)

Re: BUG #1963: SSL certificate permission check is too strict

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Martin Pitt <mpitt(at)debian(dot)org>
Cc: pgsql-bugs(at)postgresql(dot)org
Subject: Re: BUG #1963: SSL certificate permission check is too strict
Date: 2005-10-16 04:41:04
Message-ID: 4893.1129437664@sss.pgh.pa.us (view raw or flat)
Thread:
Lists: pgsql-bugs
Martin Pitt <mpitt(at)debian(dot)org> writes:
> At least the certificate could be permitted to be owned/in group root.
> I cannot see how this should weaken the certificate's security.

Postgres doesn't run as root, hence could not use such a certificate
unless it was world-readable.

Or should I infer from this that you've also patched out that safety
check?

			regards, tom lane

In response to

Responses

pgsql-bugs by date

Next:From: Martin PittDate: 2005-10-16 09:45:20
Subject: Re: BUG #1963: SSL certificate permission check is too strict
Previous:From: Tom LaneDate: 2005-10-15 00:32:37
Subject: A couple of ecpg issues in CVS tip

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group