Better document libpq sslverify behavior as requiring root.crt.

58176734 · Bruce Momjian · ebac30ed · 58176734
Commit 58176734 authored Apr 11, 2009 by Bruce Momjian
Show whitespace changes
Inline Side-by-side

Showing with 4 additions and 4 deletions

doc/src/sgml/libpq.sgml doc/src/sgml/libpq.sgml +4 -4

No files found.
--- a/doc/src/sgml/libpq.sgml
+++ b/doc/src/sgml/libpq.sgml
-<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.281 2009/03/31 01:41:27 tgl Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.282 2009/04/11 12:27:53 momjian Exp $ -->
 <chapter id="libpq">
 <title><application>libpq</application> - C Library</title>
@@ -6131,9 +6131,9 @@ myEventProc(PGEventId evtId, void *evtInfo, void *passThrough)
  <para>
   When the <literal>sslverify</> parameter is set to <literal>cn</> or
-   <literal>cert</>, libpq will verify that the server certificate is
+   <literal>cert</>, libpq requires a trustworthy server certificate by
-   trustworthy by checking the certificate chain up to a <acronym>CA</>.
+   checking the certificate chain up to a <acronym>CA</>.
-   For this to work, place the certificate of a trusted <acronym>CA</>
+   To allow verification, place the certificate of a trusted <acronym>CA</>
   in the file <filename>~/.postgresql/root.crt</> in the user's home directory.
   (On Microsoft Windows the file is named
   <filename>%APPDATA%\postgresql\root.crt</filename>.)