Home > mailing lists

Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
Date	April 10, 2009 17:31:42
Msg-id	26017.1239384691@sss.pgh.pa.us Whole thread Raw
In response to	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt (Magnus Hagander <magnus@hagander.net>)
Responses	Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
List	pgsql-bugs

Tree view

Magnus Hagander <magnus@hagander.net> writes:
> Tom Lane wrote:
>> In my experience ssh itself isn't this strict.  Why should libpq be?

> ssh prompts the user when this happens. We don't have a mechanism for
> prompting the user.

In the first place, I have never seen such a prompt, despite the fact
that I use ssh constantly to connect to machines that I know do not have
properly signed certificates.  If there is such a prompt, it isn't the
default behavior.  In the second place, unconditionally failing isn't a
particularly nice emulation of a prompting behavior.

Perhaps a suitable compromise is to have the failure message include
a hint about how to prevent the failure if you don't want it?

            regards, tom lane

pgsql-bugs by date:

From: Magnus Hagander
Date: 10 April 2009, 17:22:02
Subject: Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt

From: Magnus Hagander
Date: 10 April 2009, 17:35:06
Subject: Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt

Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt - Mailing list pgsql-bugs

Previous

Next