Home > mailing lists

Re: BUG #1963: SSL certificate permission check is too strict - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #1963: SSL certificate permission check is too strict
Date	October 16, 2005 04:41:51
Msg-id	4893.1129437664@sss.pgh.pa.us Whole thread Raw
In response to	Re: BUG #1963: SSL certificate permission check is too strict (Martin Pitt <mpitt@debian.org>)
Responses	Re: BUG #1963: SSL certificate permission check is too strict
List	pgsql-bugs

Tree view

Martin Pitt <mpitt@debian.org> writes:
> At least the certificate could be permitted to be owned/in group root.
> I cannot see how this should weaken the certificate's security.

Postgres doesn't run as root, hence could not use such a certificate
unless it was world-readable.

Or should I infer from this that you've also patched out that safety
check?

            regards, tom lane

pgsql-bugs by date:

From: Martin Pitt
Date: 16 October 2005, 00:10:03
Subject: Re: BUG #1963: SSL certificate permission check is too strict

From: Martin Pitt
Date: 16 October 2005, 16:05:55
Subject: Re: BUG #1963: SSL certificate permission check is too strict

Re: BUG #1963: SSL certificate permission check is too strict - Mailing list pgsql-bugs

Previous

Next