Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt

Поиск
Список
Период
Сортировка
От Tom Lane
Тема Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
Дата
Msg-id 22593.1239374494@sss.pgh.pa.us
обсуждение исходный текст
Ответ на Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt  (Martin Pitt <mpitt@debian.org>)
Ответы Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
Re: libpq 8.4 beta1: $PGHOST complains about missing root.crt
Список pgsql-bugs
Дерево обсуждения 
Martin Pitt <mpitt@debian.org> writes:
> I do see the benefit of failing to connect to an SSL-enabled server
> *if* I have a root.crt which doesn't match. But why fail if I don't
> have one?

I think I agree with Martin on this.  The server doesn't fail if you
don't provide it a root cert; it just doesn't try to trace client certs
to the root.  It is not apparent why the client should be stricter than
that, and definitely not apparent why such strictness should be the
default behavior.

            regards, tom lane

В списке pgsql-bugs по дате отправления: