Hi Tom,
I've followed strictly as suggested by techdoc to create certs(server.crt,
server.key, server.req). The only two factors I'm not sure are :
1. where should I put those certs. I've put them in /var/lib/pgsql/data,
where postgresql.conf sitting.
2. what user rights should the certs be. The ones I have now are already
anybody readable.
After setting the above and ssl = on in postgresql.conf, I restart the
server with /etc/init.d/postgresql restart, it failled with no logging in
pgsql (which is logging all local0), or message.log (the system log).
-Jason
----- Original Message -----
From: "Tom Lane" <tgl@sss.pgh.pa.us>
To: "Jason" <pg@newhonest.com>
Cc: "Oliver Elphick" <olly@lfix.co.uk>; "Nigel J. Andrews"
<nandrews@investsystems.co.uk>; <pgsql-general@postgresql.org>
Sent: Monday, March 24, 2003 1:47 AM
Subject: Re: [GENERAL] ssl
> "Jason" <pg@newhonest.com> writes:
> > So what have I done wrong??
> > I turned ssl = on in postgresql.conf, and restart postgresql. It just
> > failed.
>
> No error message? If so, look again (or more likely, look to see why
> your start script is routing the postmaster's complaint to /dev/null).
>
> My private bet is that you haven't set up the key/certificate files
> needed by SSL, but there's not much use in guessing about it. First
> thing you need is to be able to say something more concrete than "it
> just failed".
>
> regards, tom lane
>
>
> ---------------------------(end of broadcast)---------------------------
> TIP 1: subscribe and unsubscribe commands go to majordomo@postgresql.org
>
