On Mon, Aug 24, 2020 at 04:52:24PM -0400, Bruce Momjian wrote:
> > While true, there's certainly other reasons why someone might want to
> > run intermediate CAs.. I'm not sure that we really need to go into the
> > discussion about why they make sense to have.
>
> Agreed. If we wanted to get int
On Mon, Aug 24, 2020 at 04:00:09PM -0400, Stephen Frost wrote:
> Greetings,
>
> * Bruce Momjian (br...@momjian.us) wrote:
> > A few years ago I figured out how to create intermediate certificates
> > that are transferred across OpenSSL connections by using the v3_ca
> > extension, and added this t
Greetings,
* Bruce Momjian (br...@momjian.us) wrote:
> A few years ago I figured out how to create intermediate certificates
> that are transferred across OpenSSL connections by using the v3_ca
> extension, and added this to the PG documentation.
>
> I have now just figured out that v3_ca is just
A few years ago I figured out how to create intermediate certificates
that are transferred across OpenSSL connections by using the v3_ca
extension, and added this to the PG documentation.
I have now just figured out that v3_ca is just a heading in the openssl
configuration file, e.g., /etc/ssl/ope
