Home > mailing lists

Re: [HACKERS] [PATCH] Reload SSL certificates on SIGHUP - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: [HACKERS] [PATCH] Reload SSL certificates on SIGHUP
Date	January 3, 2017 20:34:38
Msg-id	f902fcb1-e0fd-2051-b89f-ed273ad5eb94@2ndquadrant.com Whole thread Raw
In response to	Re: [HACKERS] [PATCH] Reload SSL certificates on SIGHUP (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: [HACKERS] [PATCH] Reload SSL certificates on SIGHUP (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

On 1/2/17 10:02 PM, Tom Lane wrote:
> Before we leave this area, though, there is a loose end that requires
> more thought.  That is, what about passphrase-protected server keys?

I don't have experience with this in practice, but my hunch would be
that you can continue to use passphrases as before, but the new reload
functionality is effectively not supported.  That is, if you use
passphrases and make a key change, you need to do a full restart.

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Peter Eisentraut
Date: 03 January 2017, 20:30:58
Subject: Re: [HACKERS] pg_sequence catalog

From: Peter Eisentraut
Date: 03 January 2017, 20:39:38
Subject: Re: [HACKERS] background sessions

Re: [HACKERS] [PATCH] Reload SSL certificates on SIGHUP - Mailing list pgsql-hackers

Previous

Next