Re: ssl

Hi Tom,

I've followed strictly as suggested by techdoc to create certs(server.crt,
server.key, server.req). The only two factors I'm not sure are :
1. where should I put those certs. I've put them in /var/lib/pgsql/data,
where postgresql.conf sitting.
2. what user rights should the certs be. The ones I have now are already
anybody readable.

After setting the above and ssl = on in postgresql.conf, I restart the
server with /etc/init.d/postgresql restart, it failled with no logging in
pgsql (which is logging all local0), or message.log (the system log).

-Jason

----- Original Message -----
From: "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: "Jason" <pg(at)newhonest(dot)com>
Cc: "Oliver Elphick" <olly(at)lfix(dot)co(dot)uk>; "Nigel J. Andrews"
<nandrews(at)investsystems(dot)co(dot)uk>; <pgsql-general(at)postgresql(dot)org>
Sent: Monday, March 24, 2003 1:47 AM
Subject: Re: [GENERAL] ssl

> "Jason" <pg(at)newhonest(dot)com> writes:
> > So what have I done wrong??
> > I turned ssl = on in postgresql.conf, and restart postgresql. It just
> > failed.
>
> No error message? If so, look again (or more likely, look to see why
> your start script is routing the postmaster's complaint to /dev/null).
>
> My private bet is that you haven't set up the key/certificate files
> needed by SSL, but there's not much use in guessing about it. First
> thing you need is to be able to say something more concrete than "it
> just failed".
>
> regards, tom lane
>
>
> ---------------------------(end of broadcast)---------------------------
> TIP 1: subscribe and unsubscribe commands go to majordomo(at)postgresql(dot)org
>