Home > mailing lists

Re: [ADMIN] pg_hba.conf and hostssl all all 999.999.999.0/24 cert anduse of letsencrypt.org software - Mailing list pgsql-admin

From	Gunnar \"Nick\" Bluth
Subject	Re: [ADMIN] pg_hba.conf and hostssl all all 999.999.999.0/24 cert anduse of letsencrypt.org software
Date	January 30, 2017 14:20:29
Msg-id	7e322d81-b7ad-b484-d84d-a1a9c01fa94d@elster.de Whole thread Raw
In response to	[ADMIN] pg_hba.conf and hostssl all all 999.999.999.0/24 cert and use ofletsencrypt.org software (Poul Kristensen <bcc5226@gmail.com>)
List	pgsql-admin

Tree view

Am 01/25/2017 um 02:45 PM schrieb Poul Kristensen:
>
> Hi!

Hi Poul,


> Does anyone know if letsencrypt can be used to authenticate host(client)
> to host (PostgreSQL)?
> The goal is to let the client authenticate againts the certificate
> registered
> in an openLDAP and use letsencrypt.org <http://letsencrypt.org> software.
> The PostgreSQL host is going to run the openLDAP too.
>
> Have anyone tried this?

I'm wondering if you really thought this through... why would you want
to rely on a (rather trustworthy, but alas!) CA to manage your
certificates when you can use your own (google "easyrsa") CA without any
significant hassle?

But maybe I'm missing something ;-)

Cheers,
--
Gunnar "Nick" Bluth
DBA ELSTER

Tel:   +49 911/991-4665
Mobil: +49 172/8853339

pgsql-admin by date:

From: John Scalia
Date: 27 January 2017, 23:47:50
Subject: Re: [ADMIN] Configuring LDAP in the pg_hba.conf file

From: Magnus Hagander
Date: 30 January 2017, 14:32:11
Subject: Re: [ADMIN] pg_hba.conf and hostssl all all 999.999.999.0/24 cert anduse of letsencrypt.org software

Re: [ADMIN] pg_hba.conf and hostssl all all 999.999.999.0/24 cert anduse of letsencrypt.org software - Mailing list pgsql-admin

Previous

Next