diff options
| author | Bruce Momjian <bruce@momjian.us> | 2006-04-27 02:29:14 +0000 |
|---|---|---|
| committer | Bruce Momjian <bruce@momjian.us> | 2006-04-27 02:29:14 +0000 |
| commit | e747f4935a7463548862cead95d5c9dcdfea0d0a (patch) | |
| tree | 256d96cad0f79a6c61b6133f87e82deb04a03802 /doc/src | |
| parent | 1a84275a7b95968e8a6f8f69674c486d6af89abd (diff) | |
Add support for SSL Certificate Revocation List (CRL) files, root.crl.
Libor Hoho?
Diffstat (limited to 'doc/src')
| -rw-r--r-- | doc/src/sgml/runtime.sgml | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/doc/src/sgml/runtime.sgml b/doc/src/sgml/runtime.sgml index 75e70aa2377..a18914ac10d 100644 --- a/doc/src/sgml/runtime.sgml +++ b/doc/src/sgml/runtime.sgml @@ -1,4 +1,4 @@ -<!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.370 2006/04/11 21:04:52 momjian Exp $ --> +<!-- $PostgreSQL: pgsql/doc/src/sgml/runtime.sgml,v 1.371 2006/04/27 02:29:14 momjian Exp $ --> <chapter Id="runtime"> <title>Operating System Environment</title> @@ -1553,7 +1553,9 @@ chmod og-rwx server.key the file <filename>root.crt</filename> in the data directory. When present, a client certificate will be requested from the client during SSL connection startup, and it must have been signed by one of the - certificates present in <filename>root.crt</filename>. + certificates present in <filename>root.crt</filename>. Certificate + Revocation List (CRL) entries are also checked if the file + <filename>root.crl</filename> exists. </para> <para> @@ -1564,9 +1566,9 @@ chmod og-rwx server.key <para> The files <filename>server.key</>, <filename>server.crt</>, - and <filename>root.crt</filename> are only examined during server - start; so you must restart the server to make changes in them take - effect. + <filename>root.crt</filename>, and <filename>root.crl</filename> + are only examined during server start; so you must restart + the server to make changes in them take effect. </para> </sect1> |