Clarify libpq 'sslverify' documentation wording.

c242e6b6 · Bruce Momjian · 44023dc5 · c242e6b6
Commit c242e6b6 authored Mar 23, 2009 by Bruce Momjian
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 6 deletions

doc/src/sgml/libpq.sgml doc/src/sgml/libpq.sgml +7 -6

No files found.
--- a/doc/src/sgml/libpq.sgml
+++ b/doc/src/sgml/libpq.sgml
-<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.278 2009/02/11 04:08:47 momjian Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.279 2009/03/23 01:45:29 momjian Exp $ -->

 <chapter id="libpq">
 <title><application>libpq</application> - C Library</title>
@@ -285,11 +285,12 @@
           This option controls how libpq verifies the certificate on the
           server when performing an <acronym>SSL</> connection. There are
           three options: <literal>none</> disables verification completely
-           (not recommended!); <literal>cert</> enables verification that
-           the certificate chains to a known CA only; <literal>cn</> will
-           both verify that the certificate chains to a known CA and that
-           the <literal>cn</> attribute of the certificate matches the
-           hostname the connection is being made to (default).
+           (not recommended); <literal>cert</> enables verification that
+           the server certificate chains to a known certificate
+           authority (CA); <literal>cn</> will both verify that the
+           certificate chains to a known CA and that the <literal>cn</>
+           attribute of the server certificate matches the server's
+           hostname (default).
          </para>

          <para>