Home > mailing lists

Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt - Mailing list pgsql-bugs

From	Martin Pitt
Subject	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
Date	April 10, 2009 23:28:17
Msg-id	20090410232809.GO3775@piware.de Whole thread Raw
In response to	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

Tom Lane [2009-04-10 19:01 -0400]:
> This seems a bit handwavy --- there's a difference between the machine's
> own cert and what it thinks is a root cert.

Sure.

> How do you deal with that?  If the root cert is real, how do you put
> in self-signed server certs?

I'm afraid I don't understand. If an admin replaces the default
snakeoil cert with a real one which he got signed by a CA, then of
course he would replace the standard system SSL cert (which all the
servers default to, and which is initially the snakeoil one) with the
"good" certificate. I don't see a reason why an admin would replace a
self-signed cert with another self-signed cert?

Thanks,

Martin

--
Martin Pitt                        | http://www.piware.de
Ubuntu Developer (www.ubuntu.com)  | Debian Developer  (www.debian.org)

pgsql-bugs by date:

From: Martin Pitt
Date: 10 April 2009, 23:25:00
Subject: Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt

From: Euler Taveira de Oliveira
Date: 10 April 2009, 23:54:12
Subject: Re: BUG #4755: lost graphical relationship between tables in DbVis w/ new PG release

Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt - Mailing list pgsql-bugs

Previous

Next