Index: doc/src/sgml/runtime.sgml
===================================================================
RCS file: /cvsroot/pgsql-server/doc/src/sgml/runtime.sgml,v
retrieving revision 1.140
diff -c -c -r1.140 runtime.sgml
*** doc/src/sgml/runtime.sgml 26 Sep 2002 04:41:54 -0000 1.140
--- doc/src/sgml/runtime.sgml 27 Sep 2002 02:02:25 -0000
***************
*** 2862,2868 ****
self-signed certificate, use the following
OpenSSL command:
! openssl req -new -text -out cert.req
Fill out the information that openssl> asks for. Make sure
that you enter the local host name as Common Name; the challenge
--- 2862,2869 ----
self-signed certificate, use the following
OpenSSL command:
! cd $PGDATA
! openssl req -new -text -out server.req
Fill out the information that openssl> asks for. Make sure
that you enter the local host name as Common Name; the challenge
***************
*** 2871,2884 ****
than four characters long. To remove the passphrase (as you must if
you want automatic start-up of the server), run the commands
! openssl rsa -in privkey.pem -out cert.pem
Enter the old passphrase to unlock the existing key. Now do
! openssl req -x509 -in cert.req -text -key cert.pem -out cert.cert
! chmod og-rwx cert.pem
! cp cert.pem $PGDATA/server.key
! cp cert.cert $PGDATA/server.crt
to turn the certificate into a self-signed certificate and to copy the
key and certificate to where the server will look for them.
--- 2872,2884 ----
than four characters long. To remove the passphrase (as you must if
you want automatic start-up of the server), run the commands
! openssl rsa -in privkey.pem -out server.key
! rm privkey.pem
Enter the old passphrase to unlock the existing key. Now do
! openssl req -x509 -in server.req -text -key server.key -out server.crt
! chmod og-rwx server.key
to turn the certificate into a self-signed certificate and to copy the
key and certificate to where the server will look for them.