Better document libpq sslverify behavior as requiring root.crt.

author Bruce Momjian <bruce@momjian.us>

Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)

committer Bruce Momjian <bruce@momjian.us>

Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)
author Bruce Momjian <bruce@momjian.us>
Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)
committer Bruce Momjian <bruce@momjian.us>
Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)
diff --git a/doc/src/sgml/libpq.sgml b/doc/src/sgml/libpq.sgml

index 3c9ba6aec2c6f4bbaa88584889b2b236d9aedd8e..21892ca44a5cb9155a340d019d20cdb97b52bc16 100644 (file)
--- a/doc/src/sgml/libpq.sgml
+++ b/doc/src/sgml/libpq.sgml
@@ -6131,9 +6131,9 @@ myEventProc(PGEventId evtId, void *evtInfo, void *passThrough)
  
    <para>
     When the <literal>sslverify</> parameter is set to <literal>cn</> or
-   <literal>cert</>, libpq will verify that the server certificate is
-   trustworthy by checking the certificate chain up to a <acronym>CA</>.
-   For this to work, place the certificate of a trusted <acronym>CA</>
+   <literal>cert</>, libpq requires a trustworthy server certificate by
+   checking the certificate chain up to a <acronym>CA</>.
+   To allow verification, place the certificate of a trusted <acronym>CA</>
     in the file <filename>~/.postgresql/root.crt</> in the user's home directory.
     (On Microsoft Windows the file is named
     <filename>%APPDATA%\postgresql\root.crt</filename>.)
author	Bruce Momjian <bruce@momjian.us>
	Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)
committer	Bruce Momjian <bruce@momjian.us>
	Sat, 11 Apr 2009 12:27:53 +0000 (12:27 +0000)