Search Postgresql Archives

Re: ssl_crl_file Certificate Revocation List doesn't work for postgresql 11

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Kyotaro

From the description, seems  ~/.postgresql/root.crl  is store client revoked certificate

https://www.postgresql.org/docs/11/libpq-ssl.html
~/.postgresql/root.crlcertificates revoked by certificate authoritiesserver certificate must not be on this list
Just don't know why server parameter ssl_crl_file parameter configured but don't take affect

https://www.postgresql.org/docs/11/runtime-config-connection.html#GUC-SSL-CRL-FILE

ssl_crl_file (string)

Specifies the name of the file containing the SSL server certificate revocation list (CRL). Relative paths are relative to the data directory. This parameter can only be set in the postgresql.conf file or on the server command line. The default is empty, meaning no CRL file is loaded.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]

  Powered by Linux