[csw-devel] SF.net SVN: gar:[11623] csw/mgar/pkg/apache2/trunk/files/server.crt. build_cas
bdwalton at users.sourceforge.net
bdwalton at users.sourceforge.net
Mon Nov 15 03:53:20 CET 2010
Revision: 11623
http://gar.svn.sourceforge.net/gar/?rev=11623&view=rev
Author: bdwalton
Date: 2010-11-15 02:53:20 +0000 (Mon, 15 Nov 2010)
Log Message:
-----------
apache2: tweak the owner/perm settings on a generated ssl key/crt pair
Modified Paths:
--------------
csw/mgar/pkg/apache2/trunk/files/server.crt.build_cas
Modified: csw/mgar/pkg/apache2/trunk/files/server.crt.build_cas
===================================================================
--- csw/mgar/pkg/apache2/trunk/files/server.crt.build_cas 2010-11-15 02:50:06 UTC (rev 11622)
+++ csw/mgar/pkg/apache2/trunk/files/server.crt.build_cas 2010-11-15 02:53:20 UTC (rev 11623)
@@ -10,7 +10,6 @@
if [ ! -f $PIR/$AP2_CONFDIR/server.crt -a ! -f $PIR/$AP2_CONFDIR/server.key ]; then
echo Generating dummy ssl key and certificate... >&2
# this is likely overkill for a dummy cert, but why not
- umask 0077
cat <<EOF | /usr/sbin/chroot ${PIR} /opt/csw/bin/openssl req -new -newkey rsa:1024 -days 365 -nodes -x509 -keyout $AP2_CONFDIR/server.key -out $AP2_CONFDIR/server.crt >/dev/null 2>&1
TS
Westfarthing
@@ -22,6 +21,8 @@
EOF
+ chmod 600 $AP2_CONFDIR/server.key $AP2_CONFDIR/server.crt
+ chown root:bin $AP2_CONFDIR/server.key $AP2_CONFDIR/server.crt
fi
else
# this is so that the build class picks up the file and re-instates it
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
More information about the devel
mailing list