Background: https://neon.tech/blog/avoid-mitm-attacks-with-psql-postgres-16
Enterprise DB 17.3
"C:\Program Files\PostgreSQL\17\bin\psql.exe" "postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system"
psql: error: connection to server at "ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech" (2600:1f16:12b2:b416:3645:2f59:5554:9b89), port 5432 failed: SSL error: unregistered scheme
Issue filed: EnterpriseDB/edb-installers#264
Enterprise DB 16.7
“C:\Program Files\PostgreSQL\16\bin\psql.exe" "postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system"
psql: error: connection to server at "ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech" (2600:1f16:12b2:b424:fdaf:6c84:8d6e:429f), port 5432 failed: SSL error: unregistered scheme
Issue filed: EnterpriseDB/edb-installers#264
WSL1/Ubuntu: sudo apt install postgresql-client
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK
WSL2/openSUSE-Tumbleweed: sudo zypper install postgresql
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK
Postgres.app 2.8.1
/Applications/Postgres.app/Contents/Versions/latest/bin/psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK (issue fixed: PostgresApp/PostgresApp#801, https://github.com/PostgresApp/PostgresApp/commit/6f20a0546fcf78ed8edae0f61b9f68d679526ef5)
EnterpriseDB 17.4
/Library/PostgreSQL/17/bin/psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK (issue fixed: EnterpriseDB/edb-installers#264)
brew install postgresql@17
/opt/homebrew/opt/postgresql@17/bin/psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK
brew install postgresql@16
/opt/homebrew/opt/postgresql@16/bin/psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system'
OK
sudo port install postgresql17
/opt/local/bin/psql17 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
OK (ticket fixed: https://trac.macports.org/ticket/72080, https://github.com/macports/macports-ports/commit/60f294d1ecc7118a0f779dcbf1c8e68532c83d67)
sudo port install postgresql16
/opt/local/bin/psql16 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
OK (ticket fixed: https://trac.macports.org/ticket/72080, https://github.com/macports/macports-ports/commit/a72e66f589b36ea470bac7da0b42bcb1c85aef66)
(fink stops at pg 12)
sudo apt install postgresql-client (16)
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
OK
sudo pacman -S postgresql (17.2)
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
OK
docker run -it --rm --name psql-check -e POSTGRES_PASSWORD=xyz postgres:17.3 bash
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
psql: error: connection to server at "ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech" (3.23.186.13), port 5432 failed: SSL error: certificate verify failed
Issue opened: docker-library/postgres#1331
Debian Recommends
fix: https://salsa.debian.org/postgresql/postgresql/-/commit/96077ad61c36386646cdd9b5ce0e423a357ce73b
docker run -it --rm --name psql-check -e POSTGRES_PASSWORD=xyz postgres:16.7 bash
psql 'postgresql://user:pass@ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech/neondb?sslrootcert=system&sslmode=verify-full'
psql: error: connection to server at "ep-broad-dew-a5k9hi1k.us-east-2.aws.neon.tech" (3.23.186.13), port 5432 failed: SSL error: certificate verify failed
Issue opened: docker-library/postgres#1331
Debian Recommends
fix: https://salsa.debian.org/postgresql/postgresql/-/commit/96077ad61c36386646cdd9b5ce0e423a357ce73b