The documentation doesn’t mention the parameter sslmode. While setting up a PostgreSQL environment, I came across http://www.postgresql.org/docs/9.4/static/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS. I included sslmode=verify-full in my JDBC connection parameters which does affect the JDBC driver (a different SSLSocketFactory is used). The most obvious effect was that the server CA certificate in the default Java truststore is ignored, instead it has to be in ~/.postgresql/root.crt.
The documentation doesn’t mention the parameter
sslmode. While setting up a PostgreSQL environment, I came across http://www.postgresql.org/docs/9.4/static/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS. I includedsslmode=verify-fullin my JDBC connection parameters which does affect the JDBC driver (a differentSSLSocketFactoryis used). The most obvious effect was that the server CA certificate in the default Java truststore is ignored, instead it has to be in~/.postgresql/root.crt.