Home > mailing lists

Re: BUG #5008: Server Startup Problem - When server is configured for SSL - Mailing list pgsql-bugs

From	Magnus Hagander
Subject	Re: BUG #5008: Server Startup Problem - When server is configured for SSL
Date	August 26, 2009 20:27:27
Msg-id	9837222c0908261325n27de9aa2w38f3b49774c604db@mail.gmail.com Whole thread Raw
In response to	Re: BUG #5008: Server Startup Problem - When server is configured for SSL (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: BUG #5008: Server Startup Problem - When server is configured for SSL (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

On Wed, Aug 26, 2009 at 15:57, Tom Lane<tgl@sss.pgh.pa.us> wrote:
> Magnus Hagander <magnus@hagander.net> writes:
>> But that will still fail if the user has set it up to require a client
>> certificate.
>
> But not till it gets to the pg_hba checks. =A0We might need to have some

How would that be different from what we have now? sslmode=3Dprefer will
still allow both ssl and non-ssl connection. It won't kick you out
until you reach the hba processing, will it?

> variant on PQrequiresPassword to detect that failure type, but we'll
> already know what we need to.
>
> This still points up the value of adding an actual "ping" interface to
> the protocol, though.

Agreed.

--=20
 Magnus Hagander
 Me: http://www.hagander.net/
 Work: http://www.redpill-linpro.com/

pgsql-bugs by date:

From: Gergely Czuczy
Date: 26 August 2009, 20:12:59
Subject: Re: BUG #5012: mailing list VERP addresses not sender-verifiable

From: Anze Cevka
Date: 26 August 2009, 20:30:34
Subject: Password

Re: BUG #5008: Server Startup Problem - When server is configured for SSL - Mailing list pgsql-bugs

Previous

Next