-<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.220.2.6 2007/02/19 22:06:30 momjian Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.220.2.7 2007/03/30 03:19:19 momjian Exp $ -->
<chapter id="libpq">
<title><application>libpq</application> - C Library</title>
<filename>%APPDATA%\postgresql\root.crt</filename>.)
The SSL connection will
fail if the server does not present a certificate; therefore, to
- use this feature the server must also have a <filename>root.crt</> file.
+ use this feature the server must have a <filename>server.crt</> file.
Certificate Revocation List (CRL) entries are also checked if the file
<filename>~/.postgresql/root.crl</filename> exists (<filename>%APPDATA%\postgresql\root.crl</filename>
on Microsoft Windows).
-<!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.374 2006/11/25 22:44:48 petere Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.374.2.1 2007/03/30 03:19:19 momjian Exp $ -->
<chapter Id="runtime">
<title>Operating System Environment</title>
certificates of the <acronym>CA</acronym>(s) you wish to check for in
the file <filename>root.crt</filename> in the data directory. When
present, a client certificate will be requested from the client
- during SSL connection startup, and it must have been signed by one of the
- certificates present in <filename>root.crt</filename>. Certificate
- Revocation List (CRL) entries are also checked if the file
- <filename>root.crl</filename> exists.
+ during SSL connection startup, and it must have been signed by one of
+ the certificates present in <filename>root.crt</filename>. (See <xref
+ linkend="libpq-ssl"> for a description of how to set up client
+ certificates.) Certificate Revocation List (CRL) entries are also
+ checked if the file <filename>root.crl</filename> exists.
</para>
<para>
projects / postgresql / commitdiff