| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | George MacKerron <george(at)mackerron(dot)co(dot)uk> |
| Cc: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Making sslrootcert=system work on Windows psql |
| Date: | 2025-04-25 12:53:04 |
| Message-ID: | 1BCA0736-4969-4C07-8E8F-855631D1F0C9@yesql.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 3 Apr 2025, at 16:26, Daniel Gustafsson <daniel(at)yesql(dot)se> wrote:
>
>> On 3 Apr 2025, at 14:41, George MacKerron <george(at)mackerron(dot)co(dot)uk> wrote:
>
>> (2) sslrootcert=system on Windows doesn’t do a thing that would be extremely useful in some common situations. Namely: connecting securely to servers that present a certificate signed by a public CA.
>
> Just to be clear, does (2) happens when the OpenSSL installation has a bogus
> OPENSSLDIR value, or does it happen regardless?
I would still like to get clarity on this, do you have any insights here?
--
Daniel Gustafsson
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Daniel Gustafsson | 2025-04-25 13:04:25 | Re: sslmode=secure by default (Re: Making sslrootcert=system work on Windows psql) |
| Previous Message | Robert Haas | 2025-04-25 12:52:54 | Re: why in appendShellStringNoError() loop still continues even after it found CR or LF? |