Home > mailing lists

Re: controlling the location of server-side SSL files - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: controlling the location of server-side SSL files
Date	January 2, 2012 20:49:57
Msg-id	1325540980.15294.16.camel@vanquo.pezone.net Whole thread Raw
In response to	Re: controlling the location of server-side SSL files (Magnus Hagander <magnus@hagander.net>)
Responses	Re: controlling the location of server-side SSL files (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

On mån, 2012-01-02 at 15:47 +0100, Magnus Hagander wrote:
> Were you thinking one option pointing to a directory or one option per
> file?

One option per file:

ssl_cert_file
ssl_key_file
ssl_ca_file
ssl_crl_file

This is very similar to the configuration of, for example, Apache,
Dovecot, Postfix, so it should be quite familiar to administrators.  It
also mirrors that we have libpq options to set these things on the
client side.  (We use the term "root certificate" in libpq, but I think
"CA" is more commonly used in these situations.  Not sure.)

pgsql-hackers by date:

From: Peter Eisentraut
Date: 02 January 2012, 20:37:41
Subject: Re: [COMMITTERS] pgsql: pg_regress: Replace exit_nicely() with exit() plus atexit() hook

From: Dimitri Fontaine
Date: 02 January 2012, 20:59:44
Subject: Re: backup_label during crash recovery: do we know how to solve it?

Re: controlling the location of server-side SSL files - Mailing list pgsql-hackers

Previous

Next