On Fri, Jan 18, 2008 at 12:35:40PM +0100, Peter Eisentraut wrote: > Am Freitag, 18. Januar 2008 schrieb Magnus Hagander: > > Not that much more than moving the socket file to a secure directory. Both > > rely on configuring the client properly. It's arguably a lot easier to > > configure the client to connect to the correct socket, than to make sure > > the client has a root certificate installed. > > How would a client check whether the socket file is in a secure location?
The same way it would get the root certificate to trust - it would be told so by the administrator who had secured the location. //Magnus ---------------------------(end of broadcast)--------------------------- TIP 2: Don't 'kill -9' the postmaster
