On Thu, Feb 22, 2018 at 10:14 PM, Peter Eisentraut <peter.eisentr...@2ndquadrant.com> wrote: > Here is a patch that adds a way to specify an external command for > obtaining SSL passphrases. There is a new GUC setting > ssl_passphrase_command. > > Right now, we rely on the OpenSSL built-in prompting mechanism, which > doesn't work in some situations, including under systemd. This patch > allows a configuration to make that work, e.g., with systemd-ask-password.
I have not reviewed the patch, but count me as an enthusiastic +1 for the concept. -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company
