Re: SSL key with passphrase

Bruce Momjian <bruce@momjian.us>

From: Bruce Momjian <bruce@momjian.us>
To: Thom Brown <thom@linux.com>
Cc: Tom Lane <tgl@sss.pgh.pa.us>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2012-08-16T00:52:45Z
Lists: pgsql-hackers

Attachments

On Wed, Sep 14, 2011 at 02:40:15AM +0100, Thom Brown wrote:
> On 13 September 2011 15:17, Tom Lane <tgl@sss.pgh.pa.us> wrote:
> > Thom Brown <thom@linux.com> writes:
> >> There appears to be a problem with starting Postgres if the SSL key
> >> has a passphrase on it.
> >
> > It's documented that that's unsupported.  Given the number of ways to
> > start a postmaster, and the fact that many of them are noninteractive,
> > I don't think it's very productive for us to worry about it.
> 
> I've managed to get pg_ctl to accept the passphrase with the -w
> option.  Works fine like that.  Since that works, perhaps the page
> referring to SSL could mention this.

I have added a documention mention as you suggested for PG 9.3 in the
'-w' option section.

-- 
  Bruce Momjian  <bruce@momjian.us>        http://momjian.us
  EnterpriseDB                             http://enterprisedb.com

  + It's impossible for everything to be true. +