Hiroshi Inoue wrote:
> Magnus Hagander wrote:
>> Bruce Momjian wrote:
>>> Martin Pitt wrote:
>>>> I do see the benefit of failing to connect to an SSL-enabled server
>>>> *if* I have a root.crt which doesn't match. But why fail if I don't
>>>> have one?
>>> I have digested this thread, and have done two things: improved the
>>> documentation and posted a patch to make the error message clearer.
>>>
>>> In terms of your suggestion about root.crt, I think sslverify != none
>>> should error if it can't verify the server's certificate, whether the
>>> root.crt file is there or not. If you are asking for sslverify, it
>>> should do that or error, not ignore the setting if there is no root.crt
>>> file. The only other approach would be to add an sslverify value of
>>> 'try' that tries only if root.crt exists.
>>
>> Doesn't "try" make the whole check pretty pointless, and you can just
>> set it to "none" then?
>
> Yes the snapshot psqlodbc driver already set sslverify to none and can't
> change it though it may be differnet from the expected behavior. It was
> not so easy to implement because sslverify parameter is illegal for <=
> 8.3 libpq and the psqlodbc driver doesn't rely on environment variables
> at all.
Whatever the default is, if you can't change the value I'd say that
makes the ODBC driver pretty darn broken. It would be equally broken if
it was set to the default and it wasn't possible to change it.
//Magnus