Magnus Hagander wrote:
> The server doesn't need a root.crt certificate really - but it does need
> the *server* certificate (server.key/server.crt). root.crt is only used
> to verify *client* certificates, which is a different thing from what
> you're outlining here.
Updated:
http://momjian.us/tmp/pgsql/preventing-server-spoofing.html
Thanks.
-- Bruce Momjian <bruce@momjian.us> http://momjian.us EnterpriseDB
http://postgres.enterprisedb.com
+ If your life is a hard drive, Christ can be your backup. +