Difference between revisions of "Sslmode=require"
Jump to navigation
Jump to search
(One intermediate revision by the same user not shown) | |||
Line 5: | Line 5: | ||
For backwards compatibility with earlier versions of PostgreSQL, if a root CA file exists, the behavior of sslmode=require will be the same as that of verify-ca, meaning the server certificate is validated against the CA. Relying on this behavior is discouraged, and applications that need certificate validation should always use verify-ca or verify-full. | For backwards compatibility with earlier versions of PostgreSQL, if a root CA file exists, the behavior of sslmode=require will be the same as that of verify-ca, meaning the server certificate is validated against the CA. Relying on this behavior is discouraged, and applications that need certificate validation should always use verify-ca or verify-full. | ||
− | {{psql}} | + | |
+ | [[psql]] "[[sslmode]]=disable dbname=postgres user=postgres hostaddr=INSTANCE_IP" | ||
+ | |||
+ | == See also == | ||
+ | * {{psql}} | ||
+ | |||
+ | [[Category:psql]] |
Latest revision as of 06:58, 17 February 2023
https://www.postgresql.org/docs/current/libpq-ssl.html
For backwards compatibility with earlier versions of PostgreSQL, if a root CA file exists, the behavior of sslmode=require will be the same as that of verify-ca, meaning the server certificate is validated against the CA. Relying on this behavior is discouraged, and applications that need certificate validation should always use verify-ca or verify-full.
psql "sslmode=disable dbname=postgres user=postgres hostaddr=INSTANCE_IP"
See also[edit]
Advertising: