diff options
| author | Magnus Hagander <magnus@hagander.net> | 2008-12-02 12:42:11 +0000 |
|---|---|---|
| committer | Magnus Hagander <magnus@hagander.net> | 2008-12-02 12:42:11 +0000 |
| commit | b0729b8d4e521490cb08f182430f4fc7e08209a8 (patch) | |
| tree | 3f76ecf034243c27c0133b9981256d3974a17d32 | |
| parent | b64d966deb12a54aa6e16aeab586977c374fb2c4 (diff) | |
| download | postgresql-b0729b8d4e521490cb08f182430f4fc7e08209a8.tar.gz postgresql-b0729b8d4e521490cb08f182430f4fc7e08209a8.zip | |
Documentation for wildcard certificates patch
| -rw-r--r-- | doc/src/sgml/libpq.sgml | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/doc/src/sgml/libpq.sgml b/doc/src/sgml/libpq.sgml index e1a1d5a1c58..a9d0d98d04d 100644 --- a/doc/src/sgml/libpq.sgml +++ b/doc/src/sgml/libpq.sgml @@ -1,4 +1,4 @@ -<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.271 2008/11/25 19:30:42 tgl Exp $ --> +<!-- $PostgreSQL: pgsql/doc/src/sgml/libpq.sgml,v 1.272 2008/12/02 12:42:11 mha Exp $ --> <chapter id="libpq"> <title><application>libpq</application> - C Library</title> @@ -283,6 +283,15 @@ only if the certificate also has just the IP address in the <literal>cn</> field. </para> + + <para> + If the <literal>cn</> attribute in the certificate sent by the + server starts with an asterisk (<literal>*</>), it will be treated + as a wildcard. This wildcard can only be present at the start of + the value, and will match all characters <emphasis>except</> a + dot (<literal>.</>). This means the certificate will not match + subdomains. + </para> </listitem> </varlistentry> |