Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request
В списке pgsql-bugs по дате отправления:
| От | Craig Ringer |
|---|---|
| Тема | Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request |
| Дата | |
| Msg-id | 4BFCB20F.2030308@postnewspapers.com.au обсуждение исходный текст |
| Ответ на | Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request (Tom Lane <tgl@sss.pgh.pa.us>) |
| Ответы |
Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request
|
| Список | pgsql-bugs |
On 26/05/10 11:01, Tom Lane wrote: > In principle, you could have the server and clients using totally > nonoverlapping sets of trusted CAs (nonoverlapping root.crt lists), > as long as each can chain its identity up to a CA the other trusts. > So it's all nice and symmetrical. ... and it's exactly this cases that confuses keystore based clients that may have multiple certs installed. See the self-contained test case here: http://www.postnewspapers.com.au/~craig/testcase.zip ... which includes a Pg datadir and configuration, the certificate authority, the certificates, a detailed log of test case setup, the test programs, logs of test output along with explanation of those logs, etc. -- Craig Ringer Tech-related writing: http://soapyfrogs.blogspot.com/
В списке pgsql-bugs по дате отправления:
Сайт использует файлы cookie для корректной работы и повышения удобства. Нажимая кнопку «Принять» или продолжая пользоваться сайтом, вы соглашаетесь на их использование в соответствии с Политикой в отношении обработки cookie ООО «ППГ», в том числе на передачу данных из файлов cookie сторонним статистическим и рекламным службам. Вы можете управлять настройками cookie через параметры вашего браузера