This section describes how to configure when performing remote access using communication data encryption.
Specify "require", "verify-ca", or "verify-full" in the PGSSLMODE environment variable.
In addition, the parameters for the PGSSLROOTCERT and PGSSLCRL environment variables need to be set to prevent spoofing of the database server.
See
Refer to "Environment Variables" in "Client Interfaces" in the PostgreSQL Documentation for information on environment variables.
Refer to "Secure TCP/IP Connections with SSL" in "Server Administration" in the PostgreSQL Documentation for details.
