diff options
author | MartiMcFly | 2016-04-17 12:55:38 +0000 |
---|---|---|
committer | MartiMcFly | 2016-04-17 12:55:38 +0000 |
commit | 8a2cc7c4ad32984486d7deebdc96b86614b843a8 (patch) | |
tree | c32612d745793c98c988a8954df5ff8338bbb1ce /install | |
parent | 7eda60fa7e392aba2478bcc981ef829cec9abfe7 (diff) | |
download | aur-8a2cc7c4ad32984486d7deebdc96b86614b843a8.tar.gz |
install-ssl in seperate file
Diffstat (limited to 'install')
-rw-r--r-- | install | 32 |
1 files changed, 1 insertions, 31 deletions
@@ -38,37 +38,7 @@ post_install() { cp -n ${cfg} /etc/zarafa done - # => create ssl key and certificate (SSL) - if [ ! -f "/etc/ssl/private/zarafa.key" ] - then - # https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html - # https://cipherli.st/ - # http://www.shellhacks.com/en/HowTo-Create-CSR-using-OpenSSL-Without-Prompt-Non-Interactive - echo ">>> Creating default key and certificate to /etc/ssl/private/zarafa.*" - openssl genrsa -out /etc/ssl/private/zarafa.key 4096 - openssl req -new -sha512 -key /etc/ssl/private/zarafa.key -out /tmp/zarafa.csr -subj "/CN=localhost" - openssl x509 -req -days 3650 -in /tmp/zarafa.csr -signkey /etc/ssl/private/zarafa.key -out /etc/ssl/private/zarafa.crt - - # trust own certificate for later connections - find -L /etc/ssl/certs -samefile /etc/ssl/private/zarafa.crt -exec rm {} \; - ln -s /etc/ssl/private/zarafa.crt /etc/ssl/certs/zarafa.crt - ln -s /etc/ssl/private/zarafa.crt /etc/ssl/certs/$(openssl x509 -noout -hash -in /etc/ssl/certs/zarafa.crt).0 - update-ca-trust - fi - - # => create diffie hellman (PFS) - if [ ! -f "/etc/ssl/private/zarafa.dh" ] - then - echo ">>> Creating default dh file to /etc/ssl/private/zarafa.*" - openssl dhparam -out /etc/ssl/private/zarafa.dh 512 - fi - - # => set permission (SSL) - echo ">>> Setting permissions to /etc/ssl/private/zarafa.*" - chmod go-rwx /etc/ssl/private/zarafa.* - chmod u+rw /etc/ssl/private/zarafa.* - chown root:root /etc/ssl/private/zarafa.* - + /usr/share/doc/zarafa/install-ssl.sh } #post_upgrade() { |